1998-09-16 02:39:15 +00:00
|
|
|
/* file.c
|
|
|
|
|
* File I/O routines
|
|
|
|
|
*
|
2000-04-07 07:48:15 +00:00
|
|
|
* $Id: file.c,v 1.180 2000/04/07 07:48:15 guy Exp $
|
1998-09-16 03:22:19 +00:00
|
|
|
*
|
1998-09-16 02:39:15 +00:00
|
|
|
* Ethereal - Network traffic analyzer
|
|
|
|
|
* By Gerald Combs <gerald@zing.org>
|
|
|
|
|
* Copyright 1998 Gerald Combs
|
|
|
|
|
*
|
|
|
|
|
*
|
|
|
|
|
* This program is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU General Public License
|
|
|
|
|
* as published by the Free Software Foundation; either version 2
|
|
|
|
|
* of the License, or (at your option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
|
* along with this program; if not, write to the Free Software
|
|
|
|
|
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#ifdef HAVE_CONFIG_H
|
|
|
|
|
# include "config.h"
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#include <gtk/gtk.h>
|
1998-11-12 00:06:47 +00:00
|
|
|
|
1999-07-13 02:53:26 +00:00
|
|
|
#ifdef HAVE_UNISTD_H
|
1998-09-16 02:39:15 +00:00
|
|
|
#include <unistd.h>
|
1999-07-13 02:53:26 +00:00
|
|
|
#endif
|
|
|
|
|
|
1999-08-22 07:19:28 +00:00
|
|
|
#include <time.h>
|
|
|
|
|
|
1999-07-13 02:53:26 +00:00
|
|
|
#ifdef HAVE_IO_H
|
|
|
|
|
#include <io.h>
|
|
|
|
|
#endif
|
|
|
|
|
|
1999-07-28 20:39:42 +00:00
|
|
|
#include <stdlib.h>
|
2000-02-03 06:35:27 +00:00
|
|
|
#include <stdio.h>
|
1998-09-27 22:12:47 +00:00
|
|
|
#include <string.h>
|
1998-09-16 02:39:15 +00:00
|
|
|
#include <sys/stat.h>
|
|
|
|
|
#include <errno.h>
|
1999-05-11 18:51:10 +00:00
|
|
|
#include <fcntl.h>
|
1999-09-30 07:15:19 +00:00
|
|
|
#include <signal.h>
|
1998-09-16 02:39:15 +00:00
|
|
|
|
1998-10-10 03:32:20 +00:00
|
|
|
#ifdef NEED_SNPRINTF_H
|
1998-10-13 07:03:37 +00:00
|
|
|
# ifdef HAVE_STDARG_H
|
|
|
|
|
# include <stdarg.h>
|
|
|
|
|
# else
|
|
|
|
|
# include <varargs.h>
|
|
|
|
|
# endif
|
1998-10-10 03:32:20 +00:00
|
|
|
# include "snprintf.h"
|
|
|
|
|
#endif
|
|
|
|
|
|
1999-06-14 21:46:36 +00:00
|
|
|
#ifdef NEED_STRERROR_H
|
|
|
|
|
#include "strerror.h"
|
|
|
|
|
#endif
|
|
|
|
|
|
1998-09-16 02:39:15 +00:00
|
|
|
#ifdef HAVE_SYS_TYPES_H
|
|
|
|
|
# include <sys/types.h>
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#ifdef HAVE_NETINET_IN_H
|
|
|
|
|
# include <netinet/in.h>
|
|
|
|
|
#endif
|
|
|
|
|
|
1999-09-09 02:42:40 +00:00
|
|
|
#include "gtk/main.h"
|
1999-06-19 03:14:32 +00:00
|
|
|
#include "column.h"
|
1998-09-16 02:39:15 +00:00
|
|
|
#include "packet.h"
|
1999-07-23 08:29:24 +00:00
|
|
|
#include "print.h"
|
1998-09-16 02:39:15 +00:00
|
|
|
#include "file.h"
|
2000-01-03 03:57:04 +00:00
|
|
|
#include "menu.h"
|
1998-09-16 02:39:15 +00:00
|
|
|
#include "util.h"
|
2000-01-03 06:59:25 +00:00
|
|
|
#include "simple_dialog.h"
|
1999-12-09 07:19:20 +00:00
|
|
|
#include "ui_util.h"
|
2000-02-29 06:24:41 +00:00
|
|
|
#include "prefs.h"
|
1999-09-09 02:42:40 +00:00
|
|
|
#include "gtk/proto_draw.h"
|
1999-07-07 22:52:57 +00:00
|
|
|
#include "dfilter.h"
|
Generalize the "ip_src" and "ip_dst" members of the "packet_info"
structure to "dl_src"/"dl_dst", "net_src"/"net_dst", and "src"/"dst"
addresses, where an address is an address type, an address length in
bytes, and a pointer to that many bytes.
"dl_{src,dst}" are the link-layer source/destination; "net_{src,dst}"
are the network-layer source/destination; "{src,dst}" are the
source/destination from the highest of those two layers that we have in
the packet.
Add a port type to "packet_info" as well, specifying whether it's a TCP
or UDP port.
Don't set the address and port columns in the dissector functions; just
set the address and port members of the "packet_info" structure. Set
the columns in "fill_in_columns()"; this means that if we're showing
COL_{DEF,RES,UNRES}_SRC" or "COL_{DEF,RES,UNRES}_DST", we only generate
the string from "src" or "dst", we don't generate a string for the
link-layer address and then overwrite it with a string for the
network-layer address (generating those strings costs CPU).
Add support for "conversations", where a "conversation" is (at present)
a source and destination address and a source and destination port. (In
the future, we may support "conversations" above the transport layer,
e.g. a TFTP conversation, where the first packet goes from the client to
the TFTP server port, but the reply comes back from a different port,
and all subsequent packets go between the client address/port and the
server address/new port, or an NFS conversation, which might include
lock manager, status monitor, and mount packets, as well as NFS
packets.)
Currently, all we support is a call that takes the source and
destination address/port pairs, looks them up in a hash table, and:
if nothing is found, creates a new entry in the hash table, and
assigns it a unique 32-bit conversation ID, and returns that
conversation ID;
if an entry is found, returns its conversation ID.
Use that in the SMB and AFS code to keep track of individual SMB or AFS
conversations. We need to match up requests and replies, as, for
certain replies, the operation code for the request to which it's a
reply doesn't show up in the reply - you have to find the request with a
matching transaction ID. Transaction IDs are per-conversation, so the
hash table for requests should include a conversation ID and transaction
ID as the key.
This allows SMB and AFS decoders to handle IPv4 or IPv6 addresses
transparently (and should allow the SMB decoder to handle NetBIOS atop
other protocols as well, if the source and destination address and port
values in the "packet_info" structure are set appropriately).
In the "Follow TCP Connection" code, check to make sure that the
addresses are IPv4 addressses; ultimately, that code should be changed
to use the conversation code instead, which will let it handle IPv6
transparently.
svn path=/trunk/; revision=909
1999-10-22 07:18:23 +00:00
|
|
|
#include "conversation.h"
|
1999-11-19 22:32:00 +00:00
|
|
|
#include "globals.h"
|
Generalize the "ip_src" and "ip_dst" members of the "packet_info"
structure to "dl_src"/"dl_dst", "net_src"/"net_dst", and "src"/"dst"
addresses, where an address is an address type, an address length in
bytes, and a pointer to that many bytes.
"dl_{src,dst}" are the link-layer source/destination; "net_{src,dst}"
are the network-layer source/destination; "{src,dst}" are the
source/destination from the highest of those two layers that we have in
the packet.
Add a port type to "packet_info" as well, specifying whether it's a TCP
or UDP port.
Don't set the address and port columns in the dissector functions; just
set the address and port members of the "packet_info" structure. Set
the columns in "fill_in_columns()"; this means that if we're showing
COL_{DEF,RES,UNRES}_SRC" or "COL_{DEF,RES,UNRES}_DST", we only generate
the string from "src" or "dst", we don't generate a string for the
link-layer address and then overwrite it with a string for the
network-layer address (generating those strings costs CPU).
Add support for "conversations", where a "conversation" is (at present)
a source and destination address and a source and destination port. (In
the future, we may support "conversations" above the transport layer,
e.g. a TFTP conversation, where the first packet goes from the client to
the TFTP server port, but the reply comes back from a different port,
and all subsequent packets go between the client address/port and the
server address/new port, or an NFS conversation, which might include
lock manager, status monitor, and mount packets, as well as NFS
packets.)
Currently, all we support is a call that takes the source and
destination address/port pairs, looks them up in a hash table, and:
if nothing is found, creates a new entry in the hash table, and
assigns it a unique 32-bit conversation ID, and returns that
conversation ID;
if an entry is found, returns its conversation ID.
Use that in the SMB and AFS code to keep track of individual SMB or AFS
conversations. We need to match up requests and replies, as, for
certain replies, the operation code for the request to which it's a
reply doesn't show up in the reply - you have to find the request with a
matching transaction ID. Transaction IDs are per-conversation, so the
hash table for requests should include a conversation ID and transaction
ID as the key.
This allows SMB and AFS decoders to handle IPv4 or IPv6 addresses
transparently (and should allow the SMB decoder to handle NetBIOS atop
other protocols as well, if the source and destination address and port
values in the "packet_info" structure are set appropriately).
In the "Follow TCP Connection" code, check to make sure that the
addresses are IPv4 addressses; ultimately, that code should be changed
to use the conversation code instead, which will let it handle IPv6
transparently.
svn path=/trunk/; revision=909
1999-10-22 07:18:23 +00:00
|
|
|
|
1999-12-09 20:43:38 +00:00
|
|
|
#include "plugins.h"
|
|
|
|
|
|
1998-09-16 02:39:15 +00:00
|
|
|
extern GtkWidget *packet_list, *prog_bar, *info_bar, *byte_view, *tree_view;
|
|
|
|
|
extern guint file_ctx;
|
1999-05-11 18:51:10 +00:00
|
|
|
|
1999-09-19 15:54:54 +00:00
|
|
|
gboolean auto_scroll_live = FALSE;
|
1998-09-16 02:39:15 +00:00
|
|
|
|
1998-12-29 04:05:38 +00:00
|
|
|
static guint32 firstsec, firstusec;
|
1999-08-14 04:23:22 +00:00
|
|
|
static guint32 prevsec, prevusec;
|
1998-09-16 02:39:15 +00:00
|
|
|
|
1998-11-15 05:29:17 +00:00
|
|
|
static void wtap_dispatch_cb(u_char *, const struct wtap_pkthdr *, int,
|
|
|
|
|
const u_char *);
|
|
|
|
|
|
1999-07-28 03:29:02 +00:00
|
|
|
static void freeze_clist(capture_file *cf);
|
|
|
|
|
static void thaw_clist(capture_file *cf);
|
|
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
static char *file_rename_error_message(int err);
|
|
|
|
|
static char *file_close_error_message(int err);
|
|
|
|
|
|
1999-08-28 01:51:58 +00:00
|
|
|
/* Update the progress bar this many times when reading a file. */
|
|
|
|
|
#define N_PROGBAR_UPDATES 100
|
1999-08-05 16:46:04 +00:00
|
|
|
|
2000-04-03 22:28:51 +00:00
|
|
|
/* Number of "frame_data" structures per memory chunk.
|
|
|
|
|
XXX - is this the right number? */
|
|
|
|
|
#define FRAME_DATA_CHUNK_SIZE 1024
|
|
|
|
|
|
1998-09-16 02:39:15 +00:00
|
|
|
int
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
open_cap_file(char *fname, gboolean is_tempfile, capture_file *cf)
|
|
|
|
|
{
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
wtap *wth;
|
1999-08-15 06:59:13 +00:00
|
|
|
int err;
|
1999-09-22 01:26:50 +00:00
|
|
|
FILE_T fh;
|
1999-09-23 04:39:01 +00:00
|
|
|
int fd;
|
|
|
|
|
struct stat cf_stat;
|
1998-09-16 02:39:15 +00:00
|
|
|
|
1999-08-15 06:59:13 +00:00
|
|
|
wth = wtap_open_offline(fname, &err);
|
|
|
|
|
if (wth == NULL)
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
goto fail;
|
1998-09-16 02:39:15 +00:00
|
|
|
|
1999-08-15 06:59:13 +00:00
|
|
|
/* Find the size of the file. */
|
|
|
|
|
fh = wtap_file(wth);
|
1999-09-23 04:39:01 +00:00
|
|
|
fd = wtap_fd(wth);
|
|
|
|
|
if (fstat(fd, &cf_stat) < 0) {
|
|
|
|
|
err = errno;
|
|
|
|
|
wtap_close(wth);
|
|
|
|
|
goto fail;
|
|
|
|
|
}
|
1998-09-16 02:39:15 +00:00
|
|
|
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
/* The open succeeded. Close whatever capture file we had open,
|
|
|
|
|
and fill in the information for this file. */
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
close_cap_file(cf, info_bar);
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
|
Generalize the "ip_src" and "ip_dst" members of the "packet_info"
structure to "dl_src"/"dl_dst", "net_src"/"net_dst", and "src"/"dst"
addresses, where an address is an address type, an address length in
bytes, and a pointer to that many bytes.
"dl_{src,dst}" are the link-layer source/destination; "net_{src,dst}"
are the network-layer source/destination; "{src,dst}" are the
source/destination from the highest of those two layers that we have in
the packet.
Add a port type to "packet_info" as well, specifying whether it's a TCP
or UDP port.
Don't set the address and port columns in the dissector functions; just
set the address and port members of the "packet_info" structure. Set
the columns in "fill_in_columns()"; this means that if we're showing
COL_{DEF,RES,UNRES}_SRC" or "COL_{DEF,RES,UNRES}_DST", we only generate
the string from "src" or "dst", we don't generate a string for the
link-layer address and then overwrite it with a string for the
network-layer address (generating those strings costs CPU).
Add support for "conversations", where a "conversation" is (at present)
a source and destination address and a source and destination port. (In
the future, we may support "conversations" above the transport layer,
e.g. a TFTP conversation, where the first packet goes from the client to
the TFTP server port, but the reply comes back from a different port,
and all subsequent packets go between the client address/port and the
server address/new port, or an NFS conversation, which might include
lock manager, status monitor, and mount packets, as well as NFS
packets.)
Currently, all we support is a call that takes the source and
destination address/port pairs, looks them up in a hash table, and:
if nothing is found, creates a new entry in the hash table, and
assigns it a unique 32-bit conversation ID, and returns that
conversation ID;
if an entry is found, returns its conversation ID.
Use that in the SMB and AFS code to keep track of individual SMB or AFS
conversations. We need to match up requests and replies, as, for
certain replies, the operation code for the request to which it's a
reply doesn't show up in the reply - you have to find the request with a
matching transaction ID. Transaction IDs are per-conversation, so the
hash table for requests should include a conversation ID and transaction
ID as the key.
This allows SMB and AFS decoders to handle IPv4 or IPv6 addresses
transparently (and should allow the SMB decoder to handle NetBIOS atop
other protocols as well, if the source and destination address and port
values in the "packet_info" structure are set appropriately).
In the "Follow TCP Connection" code, check to make sure that the
addresses are IPv4 addressses; ultimately, that code should be changed
to use the conversation code instead, which will let it handle IPv6
transparently.
svn path=/trunk/; revision=909
1999-10-22 07:18:23 +00:00
|
|
|
/* Initialize the table of conversations. */
|
|
|
|
|
conversation_init();
|
|
|
|
|
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
/* Initialize protocol-specific variables */
|
Provide a general mechanism by which dissectors can register "init"
routines, which are called before a dissection pass is made over all the
packets in a capture - the "init" routine would clear out any state
information that needs to be initialized before such a dissection pass.
Make the NCP, SMB, AFS, and ONC RPC dissectors register their "init"
routines with that mechanism, have the code that reads in a capture file
call the routine that calls all registered "init" routines rather than
calling a wired-in set of "init" routines, and also have the code that
runs a filtering or colorizing pass over all the packets call that
routine, as a filtering or colorizing pass is a dissection pass.
Have the ONC RPC "init" routine zero out the table of RPC calls, so that
it completely erases any state from the previous dissection pass (so
that, for example, if you run a filtering pass, it doesn't mark any
non-duplicate packets as duplicates because it remembers them from the
previous pass).
svn path=/trunk/; revision=1050
1999-11-17 21:58:33 +00:00
|
|
|
init_all_protocols();
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
|
|
|
|
|
cf->wth = wth;
|
1999-08-15 06:59:13 +00:00
|
|
|
cf->fh = fh;
|
1999-09-23 04:39:01 +00:00
|
|
|
cf->filed = fd;
|
|
|
|
|
cf->f_len = cf_stat.st_size;
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* Set the file name because we need it to set the follow stream filter.
|
|
|
|
|
XXX - is that still true? We need it for other reasons, though,
|
|
|
|
|
in any case. */
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
cf->filename = g_strdup(fname);
|
|
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* Indicate whether it's a permanent or temporary file. */
|
|
|
|
|
cf->is_tempfile = is_tempfile;
|
|
|
|
|
|
|
|
|
|
/* If it's a temporary capture buffer file, mark it as not saved. */
|
|
|
|
|
cf->user_saved = !is_tempfile;
|
|
|
|
|
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
cf->cd_t = wtap_file_type(cf->wth);
|
|
|
|
|
cf->count = 0;
|
|
|
|
|
cf->drops = 0;
|
|
|
|
|
cf->esec = 0;
|
|
|
|
|
cf->eusec = 0;
|
|
|
|
|
cf->snap = wtap_snapshot_length(cf->wth);
|
1999-08-28 01:51:58 +00:00
|
|
|
cf->update_progbar = FALSE;
|
|
|
|
|
cf->progbar_quantum = 0;
|
|
|
|
|
cf->progbar_nextstep = 0;
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
firstsec = 0, firstusec = 0;
|
|
|
|
|
prevsec = 0, prevusec = 0;
|
|
|
|
|
|
2000-04-04 05:14:48 +00:00
|
|
|
cf->plist_chunk = g_mem_chunk_new("frame_data_chunk",
|
|
|
|
|
sizeof(frame_data),
|
|
|
|
|
FRAME_DATA_CHUNK_SIZE * sizeof(frame_data),
|
|
|
|
|
G_ALLOC_AND_FREE);
|
|
|
|
|
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
return (0);
|
Split "load_cap_file()" into "open_cap_file()" and "read_cap_file()".
The former, which used to be called by "load_cap_file()", now just opens
the file and, if the open succeeds, closes any capture file we
previously had open, reinitializes any protocols that need
reinitialization, and saves information about the new capture file in
the "capture_file" structure to which it was passed a pointer. The
latter reads the file already opened by "read_cap_file()".
For "File/Open", call "open_cap_file()" before dismissing the file
selection box; if it fails, "open_cap_file()" will have popped up a
message box complaining about it - just return, leaving the file
selection box open so the user can, after dismissing the message box,
either try again with a different file name, or dismiss the file
selection box. (Other file selection boxes should be made to work the
same way.) If "open_cap_file()" succeeds, dismiss the file selection
box, and read the capture file in.
svn path=/trunk/; revision=492
1999-08-15 00:26:11 +00:00
|
|
|
|
|
|
|
|
fail:
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_open_error_message(err, FALSE), fname);
|
|
|
|
|
return (err);
|
1998-09-16 02:39:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Reset everything to a pristine state */
|
|
|
|
|
void
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
close_cap_file(capture_file *cf, void *w)
|
|
|
|
|
{
|
2000-02-29 06:24:41 +00:00
|
|
|
/* Destroy all popup packet windows, as they refer to packets in the
|
|
|
|
|
capture file we're closing. */
|
|
|
|
|
destroy_packet_wins();
|
|
|
|
|
|
1998-09-16 02:39:15 +00:00
|
|
|
if (cf->fh) {
|
1999-09-22 01:26:50 +00:00
|
|
|
file_close(cf->fh);
|
1998-09-16 02:39:15 +00:00
|
|
|
cf->fh = NULL;
|
|
|
|
|
}
|
1998-11-12 00:06:47 +00:00
|
|
|
if (cf->wth) {
|
1999-06-19 01:14:51 +00:00
|
|
|
wtap_close(cf->wth);
|
|
|
|
|
cf->wth = NULL;
|
|
|
|
|
}
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* We have no file open... */
|
|
|
|
|
if (cf->filename != NULL) {
|
|
|
|
|
/* If it's a temporary file, remove it. */
|
|
|
|
|
if (cf->is_tempfile)
|
|
|
|
|
unlink(cf->filename);
|
|
|
|
|
g_free(cf->filename);
|
|
|
|
|
cf->filename = NULL;
|
|
|
|
|
}
|
|
|
|
|
/* ...which means we have nothing to save. */
|
|
|
|
|
cf->user_saved = FALSE;
|
|
|
|
|
|
2000-04-06 06:04:24 +00:00
|
|
|
if (cf->plist_chunk != NULL) {
|
2000-04-03 08:42:45 +00:00
|
|
|
g_mem_chunk_destroy(cf->plist_chunk);
|
2000-04-06 06:04:24 +00:00
|
|
|
cf->plist_chunk = NULL;
|
|
|
|
|
}
|
1999-08-15 19:18:46 +00:00
|
|
|
if (cf->rfcode != NULL) {
|
|
|
|
|
dfilter_destroy(cf->rfcode);
|
|
|
|
|
cf->rfcode = NULL;
|
|
|
|
|
}
|
1999-08-10 04:13:37 +00:00
|
|
|
cf->plist = NULL;
|
|
|
|
|
cf->plist_end = NULL;
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
unselect_packet(cf); /* nothing to select */
|
2000-01-25 01:05:06 +00:00
|
|
|
cf->first_displayed = NULL;
|
|
|
|
|
cf->last_displayed = NULL;
|
1998-09-16 02:39:15 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* Clear the packet list. */
|
1998-09-16 02:39:15 +00:00
|
|
|
gtk_clist_freeze(GTK_CLIST(packet_list));
|
|
|
|
|
gtk_clist_clear(GTK_CLIST(packet_list));
|
|
|
|
|
gtk_clist_thaw(GTK_CLIST(packet_list));
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
|
|
|
|
|
/* Clear any file-related status bar messages.
|
|
|
|
|
XXX - should be "clear *ALL* file-related status bar messages;
|
|
|
|
|
will there ever be more than one on the stack? */
|
|
|
|
|
gtk_statusbar_pop(GTK_STATUSBAR(w), file_ctx);
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
|
1999-12-09 07:19:20 +00:00
|
|
|
/* Restore the standard title bar message. */
|
|
|
|
|
set_main_window_name("The Ethereal Network Analyzer");
|
|
|
|
|
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
/* Disable all menu items that make sense only if you have a capture. */
|
2000-01-03 03:57:04 +00:00
|
|
|
set_menus_for_capture_file(FALSE);
|
|
|
|
|
set_menus_for_unsaved_capture_file(FALSE);
|
|
|
|
|
set_menus_for_captured_packets(FALSE);
|
|
|
|
|
set_menus_for_selected_packet(FALSE);
|
2000-01-27 09:53:50 +00:00
|
|
|
set_menus_for_capture_in_progress(FALSE);
|
1998-09-16 02:39:15 +00:00
|
|
|
}
|
|
|
|
|
|
1999-12-09 07:19:20 +00:00
|
|
|
/* Set the file name in the status line, in the name for the main window,
|
|
|
|
|
and in the name for the main window's icon. */
|
1999-11-29 01:54:01 +00:00
|
|
|
static void
|
1999-12-09 07:19:20 +00:00
|
|
|
set_display_filename(capture_file *cf)
|
1999-11-29 01:54:01 +00:00
|
|
|
{
|
|
|
|
|
gchar *name_ptr;
|
|
|
|
|
size_t msg_len;
|
|
|
|
|
gchar *done_fmt = " File: %s Drops: %u";
|
|
|
|
|
gchar *done_msg;
|
1999-12-09 07:19:20 +00:00
|
|
|
gchar *win_name_fmt = "%s - Ethereal";
|
|
|
|
|
gchar *win_name;
|
1999-11-29 01:54:01 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
if (!cf->is_tempfile) {
|
1999-11-29 01:54:01 +00:00
|
|
|
/* Get the last component of the file name, and put that in the
|
|
|
|
|
status bar. */
|
2000-01-25 04:31:17 +00:00
|
|
|
name_ptr = get_basename(cf->filename);
|
1999-11-29 01:54:01 +00:00
|
|
|
} else {
|
|
|
|
|
/* The file we read is a temporary file from a live capture;
|
|
|
|
|
we don't mention its name in the status bar. */
|
1999-12-09 07:19:20 +00:00
|
|
|
name_ptr = "<capture>";
|
1999-11-29 01:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
msg_len = strlen(name_ptr) + strlen(done_fmt) + 64;
|
|
|
|
|
done_msg = g_malloc(msg_len);
|
|
|
|
|
snprintf(done_msg, msg_len, done_fmt, name_ptr, cf->drops);
|
|
|
|
|
gtk_statusbar_push(GTK_STATUSBAR(info_bar), file_ctx, done_msg);
|
|
|
|
|
g_free(done_msg);
|
1999-12-09 07:19:20 +00:00
|
|
|
|
|
|
|
|
msg_len = strlen(name_ptr) + strlen(win_name_fmt) + 1;
|
|
|
|
|
win_name = g_malloc(msg_len);
|
|
|
|
|
snprintf(win_name, msg_len, win_name_fmt, name_ptr);
|
|
|
|
|
set_main_window_name(win_name);
|
|
|
|
|
g_free(win_name);
|
1999-11-29 01:54:01 +00:00
|
|
|
}
|
|
|
|
|
|
1998-09-16 02:39:15 +00:00
|
|
|
int
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
read_cap_file(capture_file *cf)
|
|
|
|
|
{
|
1998-09-16 02:39:15 +00:00
|
|
|
gchar *name_ptr, *load_msg, *load_fmt = " Loading: %s...";
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
int success;
|
|
|
|
|
int err;
|
1998-09-16 02:39:15 +00:00
|
|
|
size_t msg_len;
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
char *errmsg;
|
|
|
|
|
char errmsg_errno[1024+1];
|
1999-08-22 07:19:28 +00:00
|
|
|
gchar err_str[2048+1];
|
1998-09-16 02:39:15 +00:00
|
|
|
|
2000-01-25 04:31:17 +00:00
|
|
|
name_ptr = get_basename(cf->filename);
|
1999-08-07 01:25:04 +00:00
|
|
|
|
1999-11-29 01:54:01 +00:00
|
|
|
msg_len = strlen(name_ptr) + strlen(load_fmt) + 2;
|
|
|
|
|
load_msg = g_malloc(msg_len);
|
|
|
|
|
snprintf(load_msg, msg_len, load_fmt, name_ptr);
|
1999-08-10 07:16:47 +00:00
|
|
|
gtk_statusbar_push(GTK_STATUSBAR(info_bar), file_ctx, load_msg);
|
1999-11-29 01:54:01 +00:00
|
|
|
g_free(load_msg);
|
1999-08-28 01:51:58 +00:00
|
|
|
|
|
|
|
|
cf->update_progbar = TRUE;
|
|
|
|
|
/* Update the progress bar when it gets to this value. */
|
|
|
|
|
cf->progbar_nextstep = 0;
|
|
|
|
|
/* When we reach the value that triggers a progress bar update,
|
|
|
|
|
bump that value by this amount. */
|
1999-09-23 04:39:01 +00:00
|
|
|
cf->progbar_quantum = cf->f_len/N_PROGBAR_UPDATES;
|
1999-08-10 07:16:47 +00:00
|
|
|
|
2000-01-25 17:51:11 +00:00
|
|
|
#ifndef O_BINARY
|
|
|
|
|
#define O_BINARY 0
|
|
|
|
|
#endif
|
|
|
|
|
|
1999-08-10 07:16:47 +00:00
|
|
|
freeze_clist(cf);
|
1999-08-26 07:01:44 +00:00
|
|
|
proto_tree_is_visible = FALSE;
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
success = wtap_loop(cf->wth, 0, wtap_dispatch_cb, (u_char *) cf, &err);
|
1999-12-04 11:32:25 +00:00
|
|
|
/* Set the file encapsulation type now; we don't know what it is until
|
|
|
|
|
we've looked at all the packets, as we don't know until then whether
|
|
|
|
|
there's more than one type (and thus whether it's
|
|
|
|
|
WTAP_ENCAP_PER_PACKET). */
|
|
|
|
|
cf->lnk_t = wtap_file_encap(cf->wth);
|
1999-08-10 07:16:47 +00:00
|
|
|
wtap_close(cf->wth);
|
|
|
|
|
cf->wth = NULL;
|
2000-01-25 17:51:11 +00:00
|
|
|
cf->filed = open(cf->filename, O_RDONLY|O_BINARY);
|
2000-01-24 19:32:13 +00:00
|
|
|
cf->fh = filed_open(cf->filed, "rb");
|
1999-11-06 06:28:07 +00:00
|
|
|
cf->current_frame = cf->first_displayed;
|
1999-08-10 07:16:47 +00:00
|
|
|
thaw_clist(cf);
|
1999-09-23 04:39:01 +00:00
|
|
|
|
1999-09-22 01:26:50 +00:00
|
|
|
gtk_progress_set_activity_mode(GTK_PROGRESS(prog_bar), FALSE);
|
|
|
|
|
gtk_progress_set_value(GTK_PROGRESS(prog_bar), 0);
|
1998-09-16 02:39:15 +00:00
|
|
|
|
|
|
|
|
gtk_statusbar_pop(GTK_STATUSBAR(info_bar), file_ctx);
|
1999-12-09 07:19:20 +00:00
|
|
|
set_display_filename(cf);
|
1999-08-10 07:16:47 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* Enable menu items that make sense if you have a capture file you've
|
|
|
|
|
finished reading. */
|
2000-01-03 03:57:04 +00:00
|
|
|
set_menus_for_capture_file(TRUE);
|
|
|
|
|
set_menus_for_unsaved_capture_file(!cf->user_saved);
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
|
|
|
|
|
/* Enable menu items that make sense if you have some captured packets. */
|
2000-01-03 03:57:04 +00:00
|
|
|
set_menus_for_captured_packets(TRUE);
|
1999-08-10 07:16:47 +00:00
|
|
|
|
2000-01-25 01:05:06 +00:00
|
|
|
/* If we have any displayed packets to select, select the first of those
|
|
|
|
|
packets by making the first row the selected row. */
|
|
|
|
|
if (cf->first_displayed != NULL)
|
2000-01-25 00:36:35 +00:00
|
|
|
gtk_signal_emit_by_name(GTK_OBJECT(packet_list), "select_row", 0);
|
2000-01-18 08:38:18 +00:00
|
|
|
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
if (!success) {
|
|
|
|
|
/* Put up a message box noting that the read failed somewhere along
|
|
|
|
|
the line. Don't throw out the stuff we managed to read, though,
|
|
|
|
|
if any. */
|
|
|
|
|
switch (err) {
|
|
|
|
|
|
2000-02-19 08:00:08 +00:00
|
|
|
case WTAP_ERR_UNSUPPORTED_ENCAP:
|
|
|
|
|
errmsg = "The capture file is for a network type that Ethereal doesn't support.";
|
|
|
|
|
break;
|
|
|
|
|
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
case WTAP_ERR_CANT_READ:
|
|
|
|
|
errmsg = "An attempt to read from the file failed for"
|
|
|
|
|
" some unknown reason.";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case WTAP_ERR_SHORT_READ:
|
|
|
|
|
errmsg = "The capture file appears to have been cut short"
|
|
|
|
|
" in the middle of a packet.";
|
|
|
|
|
break;
|
|
|
|
|
|
DLT_NULL, from "libpcap", means different things on different platforms
and in different capture files; throw in some heuristics to try to
figure out whether the 4-byte header is:
1) PPP-over-HDLC (some version of ISDN4BSD?);
2) big-endian AF_ value (BSD on big-endian platforms);
3) little-endian AF_ value (BSD on little-endian platforms);
4) two octets of 0 followed by an Ethernet type (Linux, at least
on little-endian platforms, as mutated by "libpcap").
Make a separate Wiretap encapsulation type, WTAP_ENCAP_NULL,
corresponding to DLT_NULL.
Have the PPP code dissect the frame if it's PPP-over-HDLC, and have
"ethertype()" dissect the Ethernet type and the rest of the packet if
it's a Linux-style header; dissect it ourselves only if it's an AF_
value.
Have Wiretap impose a maximum packet size of 65535 bytes, so that it
fails more gracefully when handed a corrupt "libpcap" capture file
(other capture file formats with more than a 16-bit capture length
field, if any, will have that check added later), and put that size in
"wtap.h" and have Ethereal use it as its notion of a maximum packet
size.
Have Ethereal put up a "this file appears to be damaged or corrupt"
message box if Wiretap returns a WTAP_ERR_BAD_RECORD error when opening
or reading a capture file.
Include loopback interfaces in the list of interfaces offered by the
"Capture" dialog box, but put them at the end of the list so that it
doesn't default to a loopback interface unless there are no other
interfaces. Also, don't require that an interface in the list have an
IP address associated with it, and only put one entry in the list for a
given interface (SIOCGIFCONF returns one entry per interface *address*,
not per *interface* - and even if you were to use only IP addresses, an
interface could conceivably have more than one IP address).
Exclusively use Wiretap encapsulation types internally, even when
capturing; don't use DLT_ types.
svn path=/trunk/; revision=540
1999-08-22 00:47:56 +00:00
|
|
|
case WTAP_ERR_BAD_RECORD:
|
|
|
|
|
errmsg = "The capture file appears to be damaged or corrupt.";
|
|
|
|
|
break;
|
|
|
|
|
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
default:
|
1999-08-22 02:52:48 +00:00
|
|
|
sprintf(errmsg_errno, "An error occurred while reading the"
|
|
|
|
|
" capture file: %s.", wtap_strerror(err));
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
errmsg = errmsg_errno;
|
|
|
|
|
break;
|
|
|
|
|
}
|
1999-08-22 07:19:28 +00:00
|
|
|
snprintf(err_str, sizeof err_str, errmsg);
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL, err_str);
|
|
|
|
|
return (err);
|
|
|
|
|
} else
|
|
|
|
|
return (0);
|
1998-09-16 02:39:15 +00:00
|
|
|
}
|
|
|
|
|
|
1999-07-13 02:53:26 +00:00
|
|
|
#ifdef HAVE_LIBPCAP
|
1999-05-11 18:51:10 +00:00
|
|
|
int
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
start_tail_cap_file(char *fname, gboolean is_tempfile, capture_file *cf)
|
|
|
|
|
{
|
1999-05-11 18:51:10 +00:00
|
|
|
int err;
|
1999-07-28 03:29:02 +00:00
|
|
|
int i;
|
1999-05-11 18:51:10 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
err = open_cap_file(fname, is_tempfile, cf);
|
1999-11-29 01:54:01 +00:00
|
|
|
if (err == 0) {
|
2000-01-03 03:57:04 +00:00
|
|
|
/* Disable menu items that make no sense if you're currently running
|
|
|
|
|
a capture. */
|
|
|
|
|
set_menus_for_capture_in_progress(TRUE);
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
|
|
|
|
|
/* Enable menu items that make sense if you have some captured
|
|
|
|
|
packets (yes, I know, we don't have any *yet*). */
|
2000-01-03 03:57:04 +00:00
|
|
|
set_menus_for_captured_packets(TRUE);
|
1999-07-11 08:40:52 +00:00
|
|
|
|
1999-07-28 03:29:02 +00:00
|
|
|
for (i = 0; i < cf->cinfo.num_cols; i++) {
|
|
|
|
|
if (get_column_resize_type(cf->cinfo.col_fmt[i]) == RESIZE_LIVE)
|
|
|
|
|
gtk_clist_set_column_auto_resize(GTK_CLIST(packet_list), i, TRUE);
|
|
|
|
|
else {
|
|
|
|
|
gtk_clist_set_column_auto_resize(GTK_CLIST(packet_list), i, FALSE);
|
|
|
|
|
gtk_clist_set_column_width(GTK_CLIST(packet_list), i,
|
|
|
|
|
cf->cinfo.col_width[i]);
|
|
|
|
|
gtk_clist_set_column_resizeable(GTK_CLIST(packet_list), i, TRUE);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
1999-11-29 01:54:01 +00:00
|
|
|
/* Yes, "open_cap_file()" set this - but it set it to a file handle
|
|
|
|
|
from Wiretap, which will be closed when we close the file; we
|
|
|
|
|
want it to remain open even after that, so that we can read
|
|
|
|
|
packet data from it. */
|
2000-01-24 19:32:13 +00:00
|
|
|
cf->fh = file_open(fname, "rb");
|
1999-07-28 20:53:40 +00:00
|
|
|
|
1999-05-11 18:51:10 +00:00
|
|
|
gtk_statusbar_push(GTK_STATUSBAR(info_bar), file_ctx,
|
|
|
|
|
" <live capture in progress>");
|
|
|
|
|
}
|
1999-11-29 01:54:01 +00:00
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
continue_tail_cap_file(capture_file *cf, int to_read)
|
|
|
|
|
{
|
|
|
|
|
int err;
|
|
|
|
|
|
|
|
|
|
gtk_clist_freeze(GTK_CLIST(packet_list));
|
|
|
|
|
|
|
|
|
|
wtap_loop(cf->wth, to_read, wtap_dispatch_cb, (u_char *) cf, &err);
|
|
|
|
|
|
|
|
|
|
gtk_clist_thaw(GTK_CLIST(packet_list));
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
|
|
|
|
|
/* XXX - this cheats and looks inside the packet list to find the final
|
|
|
|
|
row number. */
|
1999-12-04 06:27:03 +00:00
|
|
|
if (auto_scroll_live && cf->plist_end != NULL)
|
1999-11-29 01:54:01 +00:00
|
|
|
gtk_clist_moveto(GTK_CLIST(packet_list),
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
GTK_CLIST(packet_list)->rows - 1, -1, 1.0, 1.0);
|
1999-11-29 01:54:01 +00:00
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
finish_tail_cap_file(capture_file *cf)
|
|
|
|
|
{
|
|
|
|
|
int err;
|
|
|
|
|
|
|
|
|
|
gtk_clist_freeze(GTK_CLIST(packet_list));
|
|
|
|
|
|
|
|
|
|
wtap_loop(cf->wth, 0, wtap_dispatch_cb, (u_char *) cf, &err);
|
|
|
|
|
|
|
|
|
|
thaw_clist(cf);
|
1999-12-04 06:27:03 +00:00
|
|
|
if (auto_scroll_live && cf->plist_end != NULL)
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
/* XXX - this cheats and looks inside the packet list to find the final
|
|
|
|
|
row number. */
|
1999-11-29 01:54:01 +00:00
|
|
|
gtk_clist_moveto(GTK_CLIST(packet_list),
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
GTK_CLIST(packet_list)->rows - 1, -1, 1.0, 1.0);
|
1999-11-29 01:54:01 +00:00
|
|
|
|
1999-12-04 11:32:25 +00:00
|
|
|
/* Set the file encapsulation type now; we don't know what it is until
|
|
|
|
|
we've looked at all the packets, as we don't know until then whether
|
|
|
|
|
there's more than one type (and thus whether it's
|
|
|
|
|
WTAP_ENCAP_PER_PACKET). */
|
|
|
|
|
cf->lnk_t = wtap_file_encap(cf->wth);
|
|
|
|
|
|
1999-11-29 01:54:01 +00:00
|
|
|
/* There's nothing more to read from the capture file - close it. */
|
|
|
|
|
wtap_close(cf->wth);
|
|
|
|
|
cf->wth = NULL;
|
|
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* Pop the "<live capture in progress>" message off the status bar. */
|
|
|
|
|
gtk_statusbar_pop(GTK_STATUSBAR(info_bar), file_ctx);
|
|
|
|
|
|
1999-12-09 07:19:20 +00:00
|
|
|
set_display_filename(cf);
|
1999-11-29 01:54:01 +00:00
|
|
|
|
2000-01-03 03:57:04 +00:00
|
|
|
/* Enable menu items that make sense if you're not currently running
|
|
|
|
|
a capture. */
|
|
|
|
|
set_menus_for_capture_in_progress(FALSE);
|
1999-11-29 01:54:01 +00:00
|
|
|
|
|
|
|
|
/* Enable menu items that make sense if you have a capture file
|
|
|
|
|
you've finished reading. */
|
2000-01-03 03:57:04 +00:00
|
|
|
set_menus_for_capture_file(TRUE);
|
|
|
|
|
set_menus_for_unsaved_capture_file(!cf->user_saved);
|
1999-11-29 01:54:01 +00:00
|
|
|
|
1999-05-11 18:51:10 +00:00
|
|
|
return err;
|
|
|
|
|
}
|
1999-09-19 15:54:54 +00:00
|
|
|
#endif /* HAVE_LIBPCAP */
|
1999-05-11 18:51:10 +00:00
|
|
|
|
1999-12-19 09:22:19 +00:00
|
|
|
typedef struct {
|
|
|
|
|
color_filter_t *colorf;
|
|
|
|
|
proto_tree *protocol_tree;
|
2000-03-20 04:55:10 +00:00
|
|
|
const guint8 *pd;
|
1999-12-19 09:22:19 +00:00
|
|
|
} apply_color_filter_args;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If no color filter has been applied, apply this one.
|
|
|
|
|
* (The "if no color filter has been applied" is to handle the case where
|
|
|
|
|
* more than one color filter matches the packet.)
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
apply_color_filter(gpointer filter_arg, gpointer argp)
|
|
|
|
|
{
|
|
|
|
|
color_filter_t *colorf = filter_arg;
|
|
|
|
|
apply_color_filter_args *args = argp;
|
|
|
|
|
|
|
|
|
|
if (colorf->c_colorfilter != NULL && args->colorf == NULL) {
|
|
|
|
|
if (dfilter_apply(colorf->c_colorfilter, args->protocol_tree, args->pd))
|
|
|
|
|
args->colorf = colorf;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
1999-08-14 04:23:22 +00:00
|
|
|
static void
|
|
|
|
|
add_packet_to_packet_list(frame_data *fdata, capture_file *cf, const u_char *buf)
|
|
|
|
|
{
|
1999-12-19 09:22:19 +00:00
|
|
|
apply_color_filter_args args;
|
1999-08-14 04:23:22 +00:00
|
|
|
gint i, row;
|
1999-12-09 20:43:38 +00:00
|
|
|
proto_tree *protocol_tree = NULL;
|
1999-08-14 04:23:22 +00:00
|
|
|
|
1999-12-19 09:22:19 +00:00
|
|
|
/* We don't yet have a color filter to apply. */
|
|
|
|
|
args.colorf = NULL;
|
|
|
|
|
|
1999-08-14 04:23:22 +00:00
|
|
|
/* If we don't have the time stamp of the first packet in the
|
|
|
|
|
capture, it's because this is the first packet. Save the time
|
|
|
|
|
stamp of this packet as the time stamp of the first packet. */
|
1998-12-29 04:05:38 +00:00
|
|
|
if (!firstsec && !firstusec) {
|
|
|
|
|
firstsec = fdata->abs_secs;
|
|
|
|
|
firstusec = fdata->abs_usecs;
|
1998-09-16 02:39:15 +00:00
|
|
|
}
|
1998-09-27 22:12:47 +00:00
|
|
|
|
|
|
|
|
/* Get the time elapsed between the first packet and this packet. */
|
1998-12-29 04:05:38 +00:00
|
|
|
cf->esec = fdata->abs_secs - firstsec;
|
|
|
|
|
if (firstusec <= fdata->abs_usecs) {
|
|
|
|
|
cf->eusec = fdata->abs_usecs - firstusec;
|
1998-09-16 02:39:15 +00:00
|
|
|
} else {
|
1998-12-29 04:05:38 +00:00
|
|
|
cf->eusec = (fdata->abs_usecs + 1000000) - firstusec;
|
1998-09-16 02:39:15 +00:00
|
|
|
cf->esec--;
|
|
|
|
|
}
|
1998-12-29 04:05:38 +00:00
|
|
|
|
1998-11-17 04:29:13 +00:00
|
|
|
fdata->cinfo = &cf->cinfo;
|
|
|
|
|
for (i = 0; i < fdata->cinfo->num_cols; i++) {
|
|
|
|
|
fdata->cinfo->col_data[i][0] = '\0';
|
|
|
|
|
}
|
1999-08-14 04:23:22 +00:00
|
|
|
|
1999-08-24 16:27:23 +00:00
|
|
|
/* Apply the filters */
|
1999-12-19 09:22:19 +00:00
|
|
|
if (cf->dfcode != NULL || filter_list != NULL) {
|
|
|
|
|
protocol_tree = proto_tree_create_root();
|
|
|
|
|
dissect_packet(buf, fdata, protocol_tree);
|
|
|
|
|
if (cf->dfcode != NULL)
|
2000-03-20 04:55:10 +00:00
|
|
|
fdata->passed_dfilter = dfilter_apply(cf->dfcode, protocol_tree, buf);
|
1999-12-19 09:22:19 +00:00
|
|
|
else
|
|
|
|
|
fdata->passed_dfilter = TRUE;
|
|
|
|
|
|
|
|
|
|
/* Apply color filters, if we have any. */
|
|
|
|
|
if (filter_list != NULL) {
|
|
|
|
|
args.protocol_tree = protocol_tree;
|
2000-03-20 04:55:10 +00:00
|
|
|
args.pd = buf;
|
1999-12-19 09:22:19 +00:00
|
|
|
g_slist_foreach(filter_list, apply_color_filter, &args);
|
|
|
|
|
}
|
|
|
|
|
proto_tree_free(protocol_tree);
|
1999-07-11 08:40:52 +00:00
|
|
|
}
|
|
|
|
|
else {
|
2000-01-15 00:23:13 +00:00
|
|
|
#ifdef HAVE_PLUGINS
|
2000-03-31 21:42:24 +00:00
|
|
|
if (enabled_plugins_number > 0)
|
1999-12-09 20:43:38 +00:00
|
|
|
protocol_tree = proto_tree_create_root();
|
|
|
|
|
#endif
|
|
|
|
|
dissect_packet(buf, fdata, protocol_tree);
|
1999-07-11 08:40:52 +00:00
|
|
|
fdata->passed_dfilter = TRUE;
|
2000-01-15 00:23:13 +00:00
|
|
|
#ifdef HAVE_PLUGINS
|
1999-12-09 20:43:38 +00:00
|
|
|
if (protocol_tree)
|
|
|
|
|
proto_tree_free(protocol_tree);
|
|
|
|
|
#endif
|
1999-07-11 08:40:52 +00:00
|
|
|
}
|
2000-01-03 22:53:34 +00:00
|
|
|
|
1999-07-07 22:52:57 +00:00
|
|
|
if (fdata->passed_dfilter) {
|
1999-08-14 04:23:22 +00:00
|
|
|
/* If we don't have the time stamp of the previous displayed packet,
|
|
|
|
|
it's because this is the first displayed packet. Save the time
|
|
|
|
|
stamp of this packet as the time stamp of the previous displayed
|
|
|
|
|
packet. */
|
|
|
|
|
if (!prevsec && !prevusec) {
|
|
|
|
|
prevsec = fdata->abs_secs;
|
|
|
|
|
prevusec = fdata->abs_usecs;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Get the time elapsed between the first packet and this packet. */
|
|
|
|
|
fdata->rel_secs = cf->esec;
|
|
|
|
|
fdata->rel_usecs = cf->eusec;
|
|
|
|
|
|
|
|
|
|
/* Get the time elapsed between the previous displayed packet and
|
|
|
|
|
this packet. */
|
|
|
|
|
fdata->del_secs = fdata->abs_secs - prevsec;
|
|
|
|
|
if (prevusec <= fdata->abs_usecs) {
|
|
|
|
|
fdata->del_usecs = fdata->abs_usecs - prevusec;
|
|
|
|
|
} else {
|
|
|
|
|
fdata->del_usecs = (fdata->abs_usecs + 1000000) - prevusec;
|
|
|
|
|
fdata->del_secs--;
|
|
|
|
|
}
|
|
|
|
|
prevsec = fdata->abs_secs;
|
|
|
|
|
prevusec = fdata->abs_usecs;
|
|
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
fill_in_columns(fdata);
|
1999-08-14 04:23:22 +00:00
|
|
|
|
2000-03-12 03:13:58 +00:00
|
|
|
/* If we haven't yet seen the first frame, this is it.
|
1999-08-14 04:23:22 +00:00
|
|
|
|
2000-03-12 03:13:58 +00:00
|
|
|
XXX - we must do this before we add the row to the display,
|
|
|
|
|
as, if the display's GtkCList's selection mode is
|
|
|
|
|
GTK_SELECTION_BROWSE, when the first entry is added to it,
|
|
|
|
|
"select_packet()" will be called, and it will fetch the row
|
|
|
|
|
data for the 0th row, and will get a null pointer rather than
|
|
|
|
|
"fdata", as "gtk_clist_append()" won't yet have returned and
|
|
|
|
|
thus "gtk_clist_set_row_data()" won't yet have been called.
|
1999-08-24 16:27:23 +00:00
|
|
|
|
2000-03-12 03:13:58 +00:00
|
|
|
We thus need to leave behind bread crumbs so that
|
|
|
|
|
"select_packet()" can find this frame. See the comment
|
|
|
|
|
in "select_packet()". */
|
1999-11-06 06:28:07 +00:00
|
|
|
if (cf->first_displayed == NULL)
|
|
|
|
|
cf->first_displayed = fdata;
|
|
|
|
|
|
|
|
|
|
/* This is the last frame we've seen so far. */
|
|
|
|
|
cf->last_displayed = fdata;
|
|
|
|
|
|
2000-03-12 03:13:58 +00:00
|
|
|
row = gtk_clist_append(GTK_CLIST(packet_list), fdata->cinfo->col_data);
|
|
|
|
|
gtk_clist_set_row_data(GTK_CLIST(packet_list), row, fdata);
|
|
|
|
|
|
1999-11-06 06:28:07 +00:00
|
|
|
/* If this was the current frame, remember the row it's in, so
|
|
|
|
|
we can arrange that it's on the screen when we're done. */
|
|
|
|
|
if (cf->current_frame == fdata)
|
|
|
|
|
cf->current_row = row;
|
2000-03-12 03:13:58 +00:00
|
|
|
|
|
|
|
|
if (filter_list != NULL && (args.colorf != NULL)) {
|
|
|
|
|
gtk_clist_set_background(GTK_CLIST(packet_list), row,
|
|
|
|
|
&args.colorf->bg_color);
|
|
|
|
|
gtk_clist_set_foreground(GTK_CLIST(packet_list), row,
|
|
|
|
|
&args.colorf->fg_color);
|
|
|
|
|
} else {
|
|
|
|
|
gtk_clist_set_background(GTK_CLIST(packet_list), row, &WHITE);
|
|
|
|
|
gtk_clist_set_foreground(GTK_CLIST(packet_list), row, &BLACK);
|
|
|
|
|
}
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
}
|
1998-11-17 04:29:13 +00:00
|
|
|
fdata->cinfo = NULL;
|
1999-06-19 01:14:51 +00:00
|
|
|
}
|
1998-09-27 22:12:47 +00:00
|
|
|
|
1999-06-19 01:14:51 +00:00
|
|
|
static void
|
|
|
|
|
wtap_dispatch_cb(u_char *user, const struct wtap_pkthdr *phdr, int offset,
|
|
|
|
|
const u_char *buf) {
|
|
|
|
|
frame_data *fdata;
|
|
|
|
|
capture_file *cf = (capture_file *) user;
|
1999-08-10 04:13:37 +00:00
|
|
|
int passed;
|
1999-08-08 01:29:24 +00:00
|
|
|
proto_tree *protocol_tree;
|
1999-08-10 04:13:37 +00:00
|
|
|
frame_data *plist_end;
|
1999-09-23 04:39:01 +00:00
|
|
|
int file_pos;
|
|
|
|
|
float prog_val;
|
1999-06-19 01:14:51 +00:00
|
|
|
|
1999-08-28 01:51:58 +00:00
|
|
|
/* Update the progress bar, but do it only N_PROGBAR_UPDATES times;
|
|
|
|
|
when we update it, we have to run the GTK+ main loop to get it
|
|
|
|
|
to repaint what's pending, and doing so may involve an "ioctl()"
|
|
|
|
|
to see if there's any pending input from an X server, and doing
|
|
|
|
|
that for every packet can be costly, especially on a big file.
|
|
|
|
|
|
|
|
|
|
Do so only if we were told to do so; when reading a capture file
|
|
|
|
|
being updated by a live capture, we don't do so (as we're not
|
|
|
|
|
"done" until the capture stops, so we don't know how close to
|
|
|
|
|
"done" we are. */
|
1999-09-23 04:39:01 +00:00
|
|
|
|
|
|
|
|
if (cf->update_progbar && offset >= cf->progbar_nextstep) {
|
|
|
|
|
file_pos = lseek(cf->filed, 0, SEEK_CUR);
|
|
|
|
|
prog_val = (gfloat) file_pos / (gfloat) cf->f_len;
|
|
|
|
|
gtk_progress_bar_update(GTK_PROGRESS_BAR(prog_bar), prog_val);
|
|
|
|
|
cf->progbar_nextstep += cf->progbar_quantum;
|
1999-09-22 01:26:50 +00:00
|
|
|
while (gtk_events_pending())
|
1999-09-23 04:39:01 +00:00
|
|
|
gtk_main_iteration();
|
1999-08-28 01:51:58 +00:00
|
|
|
}
|
1999-09-23 04:39:01 +00:00
|
|
|
|
1999-06-19 01:14:51 +00:00
|
|
|
/* Allocate the next list entry, and add it to the list. */
|
2000-04-03 08:42:45 +00:00
|
|
|
fdata = g_mem_chunk_alloc(cf->plist_chunk);
|
1999-06-19 01:14:51 +00:00
|
|
|
|
1999-08-10 06:54:12 +00:00
|
|
|
fdata->next = NULL;
|
1999-11-06 06:28:07 +00:00
|
|
|
fdata->prev = NULL;
|
2000-03-26 07:03:52 +00:00
|
|
|
fdata->pfd = NULL;
|
1999-06-19 01:14:51 +00:00
|
|
|
fdata->pkt_len = phdr->len;
|
|
|
|
|
fdata->cap_len = phdr->caplen;
|
|
|
|
|
fdata->file_off = offset;
|
|
|
|
|
fdata->lnk_t = phdr->pkt_encap;
|
|
|
|
|
fdata->abs_secs = phdr->ts.tv_sec;
|
|
|
|
|
fdata->abs_usecs = phdr->ts.tv_usec;
|
1999-11-22 06:24:56 +00:00
|
|
|
fdata->encoding = CHAR_ASCII;
|
1999-08-20 06:55:20 +00:00
|
|
|
fdata->pseudo_header = phdr->pseudo_header;
|
1999-07-07 22:52:57 +00:00
|
|
|
fdata->cinfo = NULL;
|
1999-06-19 01:14:51 +00:00
|
|
|
|
1999-08-08 01:29:24 +00:00
|
|
|
passed = TRUE;
|
1999-08-15 19:18:46 +00:00
|
|
|
if (cf->rfcode) {
|
1999-10-12 05:01:07 +00:00
|
|
|
protocol_tree = proto_tree_create_root();
|
|
|
|
|
dissect_packet(buf, fdata, protocol_tree);
|
2000-03-20 04:55:10 +00:00
|
|
|
passed = dfilter_apply(cf->rfcode, protocol_tree, buf);
|
1999-10-12 05:01:07 +00:00
|
|
|
proto_tree_free(protocol_tree);
|
1999-08-14 18:51:26 +00:00
|
|
|
}
|
1999-08-08 01:29:24 +00:00
|
|
|
if (passed) {
|
1999-08-10 04:13:37 +00:00
|
|
|
plist_end = cf->plist_end;
|
1999-11-06 06:28:07 +00:00
|
|
|
fdata->prev = plist_end;
|
1999-08-10 04:13:37 +00:00
|
|
|
if (plist_end != NULL)
|
|
|
|
|
plist_end->next = fdata;
|
|
|
|
|
else
|
|
|
|
|
cf->plist = fdata;
|
|
|
|
|
cf->plist_end = fdata;
|
1999-08-08 01:29:24 +00:00
|
|
|
|
|
|
|
|
cf->count++;
|
2000-01-13 00:53:09 +00:00
|
|
|
fdata->num = cf->count;
|
1999-08-08 01:29:24 +00:00
|
|
|
add_packet_to_packet_list(fdata, cf, buf);
|
2000-04-03 08:42:45 +00:00
|
|
|
} else {
|
|
|
|
|
/* XXX - if we didn't have read filters, or if we could avoid
|
|
|
|
|
allocating the "frame_data" structure until we knew whether
|
|
|
|
|
the frame passed the read filter, we could use a G_ALLOC_ONLY
|
2000-04-03 08:57:17 +00:00
|
|
|
memory chunk...
|
|
|
|
|
|
|
|
|
|
...but, at least in one test I did, where I just made the chunk
|
|
|
|
|
a G_ALLOC_ONLY chunk and read in a huge capture file, it didn't
|
|
|
|
|
seem to save a noticeable amount of time or space. */
|
2000-04-03 08:42:45 +00:00
|
|
|
g_mem_chunk_free(cf->plist_chunk, fdata);
|
|
|
|
|
}
|
1999-07-11 08:40:52 +00:00
|
|
|
}
|
|
|
|
|
|
1999-11-25 18:02:25 +00:00
|
|
|
int
|
1999-10-11 06:39:26 +00:00
|
|
|
filter_packets(capture_file *cf, gchar *dftext)
|
1999-07-11 08:40:52 +00:00
|
|
|
{
|
1999-10-11 06:39:26 +00:00
|
|
|
dfilter *dfcode;
|
1999-08-05 16:46:04 +00:00
|
|
|
|
1999-10-11 06:39:26 +00:00
|
|
|
if (dftext == NULL) {
|
|
|
|
|
/* The new filter is an empty filter (i.e., display all packets). */
|
|
|
|
|
dfcode = NULL;
|
|
|
|
|
} else {
|
1999-07-11 08:40:52 +00:00
|
|
|
/*
|
1999-10-11 06:39:26 +00:00
|
|
|
* We have a filter; try to compile it.
|
1999-07-11 08:40:52 +00:00
|
|
|
*/
|
1999-10-12 05:01:07 +00:00
|
|
|
if (dfilter_compile(dftext, &dfcode) != 0) {
|
|
|
|
|
/* The attempt failed; report an error. */
|
1999-08-20 20:37:47 +00:00
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL, dfilter_error_msg);
|
1999-11-25 18:02:25 +00:00
|
|
|
return 0;
|
1999-07-11 08:40:52 +00:00
|
|
|
}
|
1999-10-11 06:39:26 +00:00
|
|
|
|
|
|
|
|
/* Was it empty? */
|
1999-10-12 05:01:07 +00:00
|
|
|
if (dfcode == NULL) {
|
|
|
|
|
/* Yes - free the filter text, and set it to null. */
|
1999-10-11 06:39:26 +00:00
|
|
|
g_free(dftext);
|
|
|
|
|
dftext = NULL;
|
|
|
|
|
}
|
1999-07-07 22:52:57 +00:00
|
|
|
}
|
1999-06-22 03:39:07 +00:00
|
|
|
|
1999-10-11 06:39:26 +00:00
|
|
|
/* We have a valid filter. Replace the current filter. */
|
|
|
|
|
if (cf->dfilter != NULL)
|
|
|
|
|
g_free(cf->dfilter);
|
|
|
|
|
cf->dfilter = dftext;
|
|
|
|
|
if (cf->dfcode != NULL)
|
|
|
|
|
dfilter_destroy(cf->dfcode);
|
|
|
|
|
cf->dfcode = dfcode;
|
|
|
|
|
|
|
|
|
|
/* Now go through the list of packets we've read from the capture file,
|
|
|
|
|
applying the current display filter, and, if the packet passes the
|
|
|
|
|
display filter, add it to the summary display, appropriately
|
|
|
|
|
colored. (That's how we colorize the display - it's like filtering
|
|
|
|
|
the display, only we don't install a new filter.) */
|
|
|
|
|
colorize_packets(cf);
|
1999-11-25 18:02:25 +00:00
|
|
|
return 1;
|
1999-10-11 06:39:26 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void
|
|
|
|
|
colorize_packets(capture_file *cf)
|
|
|
|
|
{
|
|
|
|
|
frame_data *fd;
|
|
|
|
|
guint32 progbar_quantum;
|
|
|
|
|
guint32 progbar_nextstep;
|
2000-01-08 23:49:33 +00:00
|
|
|
int count;
|
1999-10-11 06:39:26 +00:00
|
|
|
|
Provide a general mechanism by which dissectors can register "init"
routines, which are called before a dissection pass is made over all the
packets in a capture - the "init" routine would clear out any state
information that needs to be initialized before such a dissection pass.
Make the NCP, SMB, AFS, and ONC RPC dissectors register their "init"
routines with that mechanism, have the code that reads in a capture file
call the routine that calls all registered "init" routines rather than
calling a wired-in set of "init" routines, and also have the code that
runs a filtering or colorizing pass over all the packets call that
routine, as a filtering or colorizing pass is a dissection pass.
Have the ONC RPC "init" routine zero out the table of RPC calls, so that
it completely erases any state from the previous dissection pass (so
that, for example, if you run a filtering pass, it doesn't mark any
non-duplicate packets as duplicates because it remembers them from the
previous pass).
svn path=/trunk/; revision=1050
1999-11-17 21:58:33 +00:00
|
|
|
/* We need to re-initialize all the state information that protocols
|
|
|
|
|
keep, because we're making a fresh pass through all the packets. */
|
|
|
|
|
|
|
|
|
|
/* Initialize the table of conversations. */
|
|
|
|
|
conversation_init();
|
|
|
|
|
|
|
|
|
|
/* Initialize protocol-specific variables */
|
|
|
|
|
init_all_protocols();
|
|
|
|
|
|
1999-09-22 01:26:50 +00:00
|
|
|
gtk_progress_set_activity_mode(GTK_PROGRESS(prog_bar), FALSE);
|
|
|
|
|
|
1999-07-11 08:40:52 +00:00
|
|
|
/* Freeze the packet list while we redo it, so we don't get any
|
|
|
|
|
screen updates while it happens. */
|
|
|
|
|
gtk_clist_freeze(GTK_CLIST(packet_list));
|
|
|
|
|
|
|
|
|
|
/* Clear it out. */
|
|
|
|
|
gtk_clist_clear(GTK_CLIST(packet_list));
|
|
|
|
|
|
1999-11-06 06:28:07 +00:00
|
|
|
/* We don't yet know which will be the first and last frames displayed. */
|
|
|
|
|
cf->first_displayed = NULL;
|
|
|
|
|
cf->last_displayed = NULL;
|
|
|
|
|
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
/* If a packet was selected, we don't know yet what row, if any, it'll
|
|
|
|
|
get. */
|
1999-11-06 06:28:07 +00:00
|
|
|
cf->current_row = -1;
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
|
1999-08-14 03:36:30 +00:00
|
|
|
/* Iterate through the list of packets, calling a routine
|
|
|
|
|
to run the filter on the packet, see if it matches, and
|
|
|
|
|
put it in the display list if so. */
|
1999-07-11 08:40:52 +00:00
|
|
|
firstsec = 0;
|
|
|
|
|
firstusec = 0;
|
1999-08-14 04:23:22 +00:00
|
|
|
prevsec = 0;
|
|
|
|
|
prevusec = 0;
|
1999-08-05 16:46:04 +00:00
|
|
|
|
1999-08-26 07:01:44 +00:00
|
|
|
proto_tree_is_visible = FALSE;
|
|
|
|
|
|
1999-08-28 01:51:58 +00:00
|
|
|
/* Update the progress bar when it gets to this value. */
|
|
|
|
|
progbar_nextstep = 0;
|
|
|
|
|
/* When we reach the value that triggers a progress bar update,
|
|
|
|
|
bump that value by this amount. */
|
2000-01-08 23:49:33 +00:00
|
|
|
progbar_quantum = cf->count/N_PROGBAR_UPDATES;
|
|
|
|
|
/* Count of packets at which we've looked. */
|
|
|
|
|
count = 0;
|
|
|
|
|
|
1999-09-22 01:26:50 +00:00
|
|
|
gtk_progress_bar_set_orientation(GTK_PROGRESS_BAR(prog_bar), GTK_PROGRESS_LEFT_TO_RIGHT);
|
1999-08-28 01:51:58 +00:00
|
|
|
|
1999-08-10 04:13:37 +00:00
|
|
|
for (fd = cf->plist; fd != NULL; fd = fd->next) {
|
1999-08-28 01:51:58 +00:00
|
|
|
/* Update the progress bar, but do it only N_PROGBAR_UPDATES times;
|
|
|
|
|
when we update it, we have to run the GTK+ main loop to get it
|
|
|
|
|
to repaint what's pending, and doing so may involve an "ioctl()"
|
|
|
|
|
to see if there's any pending input from an X server, and doing
|
|
|
|
|
that for every packet can be costly, especially on a big file. */
|
2000-01-08 23:49:33 +00:00
|
|
|
if (count >= progbar_nextstep) {
|
1999-08-28 01:51:58 +00:00
|
|
|
/* let's not divide by zero. I should never be started
|
2000-01-08 23:49:33 +00:00
|
|
|
* with count == 0, so let's assert that
|
1999-08-28 01:51:58 +00:00
|
|
|
*/
|
2000-01-08 23:49:33 +00:00
|
|
|
g_assert(cf->count > 0);
|
1999-08-28 01:51:58 +00:00
|
|
|
|
2000-01-08 23:49:33 +00:00
|
|
|
gtk_progress_bar_update(GTK_PROGRESS_BAR(prog_bar),
|
|
|
|
|
(gfloat) count / cf->count);
|
1999-09-22 01:26:50 +00:00
|
|
|
|
1999-08-28 01:51:58 +00:00
|
|
|
progbar_nextstep += progbar_quantum;
|
|
|
|
|
while (gtk_events_pending())
|
|
|
|
|
gtk_main_iteration();
|
|
|
|
|
}
|
|
|
|
|
|
2000-01-08 23:49:33 +00:00
|
|
|
count++;
|
1999-08-10 04:13:37 +00:00
|
|
|
|
1999-10-31 17:46:11 +00:00
|
|
|
wtap_seek_read (cf->cd_t, cf->fh, fd->file_off, cf->pd, fd->cap_len);
|
1999-08-10 04:13:37 +00:00
|
|
|
|
|
|
|
|
add_packet_to_packet_list(fd, cf, cf->pd);
|
|
|
|
|
}
|
1999-08-05 16:46:04 +00:00
|
|
|
|
1999-09-24 05:22:28 +00:00
|
|
|
gtk_progress_bar_update(GTK_PROGRESS_BAR(prog_bar), 0);
|
1999-07-11 08:40:52 +00:00
|
|
|
|
1999-11-06 06:28:07 +00:00
|
|
|
if (cf->current_row != -1) {
|
|
|
|
|
/* The current frame passed the filter; make sure it's visible. */
|
|
|
|
|
if (!gtk_clist_row_is_visible(GTK_CLIST(packet_list), cf->current_row))
|
|
|
|
|
gtk_clist_moveto(GTK_CLIST(packet_list), cf->current_row, -1, 0.0, 0.0);
|
|
|
|
|
if (cf->current_frame_is_selected) {
|
|
|
|
|
/* It was selected, so re-select it. */
|
|
|
|
|
gtk_clist_select_row(GTK_CLIST(packet_list), cf->current_row, -1);
|
|
|
|
|
}
|
1999-11-19 22:32:00 +00:00
|
|
|
finfo_selected = NULL;
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
} else {
|
1999-11-06 06:28:07 +00:00
|
|
|
/* The current frame didn't pass the filter; make the first frame
|
|
|
|
|
the current frame, and leave it unselected. */
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
unselect_packet(cf);
|
1999-11-06 06:28:07 +00:00
|
|
|
cf->current_frame = cf->first_displayed;
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
}
|
|
|
|
|
|
1999-07-11 08:40:52 +00:00
|
|
|
/* Unfreeze the packet list. */
|
|
|
|
|
gtk_clist_thaw(GTK_CLIST(packet_list));
|
1999-06-22 03:39:07 +00:00
|
|
|
}
|
|
|
|
|
|
1999-07-23 08:29:24 +00:00
|
|
|
int
|
1999-09-12 06:11:51 +00:00
|
|
|
print_packets(capture_file *cf, print_args_t *print_args)
|
1999-07-23 08:29:24 +00:00
|
|
|
{
|
1999-09-12 06:11:51 +00:00
|
|
|
int i;
|
1999-08-10 04:13:37 +00:00
|
|
|
frame_data *fd;
|
1999-09-13 23:45:22 +00:00
|
|
|
guint32 progbar_quantum;
|
|
|
|
|
guint32 progbar_nextstep;
|
|
|
|
|
guint32 count;
|
1999-08-10 04:13:37 +00:00
|
|
|
proto_tree *protocol_tree;
|
1999-09-12 06:11:51 +00:00
|
|
|
gint *col_widths = NULL;
|
|
|
|
|
gint data_width;
|
|
|
|
|
gboolean print_separator;
|
2000-02-21 08:18:00 +00:00
|
|
|
char *line_buf = NULL;
|
|
|
|
|
int line_buf_len = 256;
|
2000-01-06 07:33:35 +00:00
|
|
|
char *cp;
|
2000-02-21 08:18:00 +00:00
|
|
|
int column_len;
|
|
|
|
|
int line_len;
|
1999-08-10 04:13:37 +00:00
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
cf->print_fh = open_print_dest(print_args->to_file, print_args->dest);
|
1999-07-23 08:29:24 +00:00
|
|
|
if (cf->print_fh == NULL)
|
|
|
|
|
return FALSE; /* attempt to open destination failed */
|
|
|
|
|
|
2000-01-06 07:33:35 +00:00
|
|
|
print_preamble(cf->print_fh, print_args->format);
|
1999-07-23 21:09:25 +00:00
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
if (print_args->print_summary) {
|
2000-02-21 08:18:00 +00:00
|
|
|
/* We're printing packet summaries. Allocate the line buffer at
|
|
|
|
|
its initial length. */
|
|
|
|
|
line_buf = g_malloc(line_buf_len + 1);
|
1999-09-12 06:11:51 +00:00
|
|
|
|
2000-02-21 08:18:00 +00:00
|
|
|
/* Find the widths for each of the columns - maximum of the
|
1999-09-12 06:11:51 +00:00
|
|
|
width of the title and the width of the data - and print
|
|
|
|
|
the column titles. */
|
|
|
|
|
col_widths = (gint *) g_malloc(sizeof(gint) * cf->cinfo.num_cols);
|
2000-01-06 07:33:35 +00:00
|
|
|
cp = &line_buf[0];
|
2000-02-21 08:18:00 +00:00
|
|
|
line_len = 0;
|
1999-09-12 06:11:51 +00:00
|
|
|
for (i = 0; i < cf->cinfo.num_cols; i++) {
|
|
|
|
|
/* Don't pad the last column. */
|
|
|
|
|
if (i == cf->cinfo.num_cols - 1)
|
|
|
|
|
col_widths[i] = 0;
|
|
|
|
|
else {
|
|
|
|
|
col_widths[i] = strlen(cf->cinfo.col_title[i]);
|
|
|
|
|
data_width = get_column_char_width(get_column_format(i));
|
|
|
|
|
if (data_width > col_widths[i])
|
|
|
|
|
col_widths[i] = data_width;
|
|
|
|
|
}
|
|
|
|
|
|
2000-02-21 08:18:00 +00:00
|
|
|
/* Find the length of the string for this column. */
|
|
|
|
|
column_len = strlen(cf->cinfo.col_title[i]);
|
|
|
|
|
if (col_widths[i] > column_len)
|
|
|
|
|
column_len = col_widths[i];
|
|
|
|
|
|
|
|
|
|
/* Make sure there's room in the line buffer for the column; if not,
|
|
|
|
|
double its length. */
|
|
|
|
|
line_len += column_len + 1; /* "+1" for space or \n */
|
|
|
|
|
if (line_len > line_buf_len) {
|
|
|
|
|
line_buf_len *= 2;
|
|
|
|
|
line_buf = g_realloc(line_buf, line_buf_len + 1);
|
|
|
|
|
}
|
|
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
/* Right-justify the packet number column. */
|
|
|
|
|
if (cf->cinfo.col_fmt[i] == COL_NUMBER)
|
2000-02-21 08:18:00 +00:00
|
|
|
sprintf(cp, "%*s", col_widths[i], cf->cinfo.col_title[i]);
|
1999-09-12 06:11:51 +00:00
|
|
|
else
|
2000-02-21 08:18:00 +00:00
|
|
|
sprintf(cp, "%-*s", col_widths[i], cf->cinfo.col_title[i]);
|
|
|
|
|
cp += column_len;
|
1999-09-12 06:11:51 +00:00
|
|
|
if (i == cf->cinfo.num_cols - 1)
|
2000-01-06 07:33:35 +00:00
|
|
|
*cp++ = '\n';
|
1999-09-12 06:11:51 +00:00
|
|
|
else
|
2000-01-06 07:33:35 +00:00
|
|
|
*cp++ = ' ';
|
1999-09-12 06:11:51 +00:00
|
|
|
}
|
2000-01-06 07:33:35 +00:00
|
|
|
*cp = '\0';
|
|
|
|
|
print_line(cf->print_fh, print_args->format, line_buf);
|
1999-09-12 06:11:51 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
print_separator = FALSE;
|
1999-08-26 07:01:44 +00:00
|
|
|
proto_tree_is_visible = TRUE;
|
|
|
|
|
|
1999-09-13 23:45:22 +00:00
|
|
|
/* Update the progress bar when it gets to this value. */
|
|
|
|
|
progbar_nextstep = 0;
|
|
|
|
|
/* When we reach the value that triggers a progress bar update,
|
|
|
|
|
bump that value by this amount. */
|
2000-01-08 23:49:33 +00:00
|
|
|
progbar_quantum = cf->count/N_PROGBAR_UPDATES;
|
|
|
|
|
/* Count of packets at which we've looked. */
|
1999-09-13 23:45:22 +00:00
|
|
|
count = 0;
|
|
|
|
|
|
2000-01-08 23:49:33 +00:00
|
|
|
gtk_progress_bar_set_orientation(GTK_PROGRESS_BAR(prog_bar), GTK_PROGRESS_LEFT_TO_RIGHT);
|
|
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
/* Iterate through the list of packets, printing the packets that
|
|
|
|
|
were selected by the current display filter. */
|
1999-08-10 04:13:37 +00:00
|
|
|
for (fd = cf->plist; fd != NULL; fd = fd->next) {
|
1999-09-13 23:45:22 +00:00
|
|
|
/* Update the progress bar, but do it only N_PROGBAR_UPDATES times;
|
|
|
|
|
when we update it, we have to run the GTK+ main loop to get it
|
|
|
|
|
to repaint what's pending, and doing so may involve an "ioctl()"
|
|
|
|
|
to see if there's any pending input from an X server, and doing
|
|
|
|
|
that for every packet can be costly, especially on a big file. */
|
|
|
|
|
if (count >= progbar_nextstep) {
|
|
|
|
|
/* let's not divide by zero. I should never be started
|
2000-01-08 23:49:33 +00:00
|
|
|
* with count == 0, so let's assert that
|
1999-09-13 23:45:22 +00:00
|
|
|
*/
|
2000-01-08 23:49:33 +00:00
|
|
|
g_assert(cf->count > 0);
|
1999-09-13 23:45:22 +00:00
|
|
|
|
|
|
|
|
gtk_progress_bar_update(GTK_PROGRESS_BAR(prog_bar),
|
2000-01-08 23:49:33 +00:00
|
|
|
(gfloat) count / cf->count);
|
1999-09-13 23:45:22 +00:00
|
|
|
progbar_nextstep += progbar_quantum;
|
|
|
|
|
while (gtk_events_pending())
|
|
|
|
|
gtk_main_iteration();
|
|
|
|
|
}
|
|
|
|
|
count++;
|
|
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
if (fd->passed_dfilter) {
|
|
|
|
|
wtap_seek_read (cf->cd_t, cf->fh, fd->file_off, cf->pd, fd->cap_len);
|
|
|
|
|
if (print_args->print_summary) {
|
|
|
|
|
/* Fill in the column information, but don't bother creating
|
|
|
|
|
the logical protocol tree. */
|
|
|
|
|
fd->cinfo = &cf->cinfo;
|
|
|
|
|
for (i = 0; i < fd->cinfo->num_cols; i++) {
|
|
|
|
|
fd->cinfo->col_data[i][0] = '\0';
|
|
|
|
|
}
|
|
|
|
|
dissect_packet(cf->pd, fd, NULL);
|
|
|
|
|
fill_in_columns(fd);
|
2000-01-06 07:33:35 +00:00
|
|
|
cp = &line_buf[0];
|
2000-02-21 08:18:00 +00:00
|
|
|
line_len = 0;
|
1999-09-12 06:11:51 +00:00
|
|
|
for (i = 0; i < cf->cinfo.num_cols; i++) {
|
2000-02-21 08:18:00 +00:00
|
|
|
/* Find the length of the string for this column. */
|
|
|
|
|
column_len = strlen(cf->cinfo.col_data[i]);
|
|
|
|
|
if (col_widths[i] > column_len)
|
|
|
|
|
column_len = col_widths[i];
|
|
|
|
|
|
|
|
|
|
/* Make sure there's room in the line buffer for the column; if not,
|
|
|
|
|
double its length. */
|
|
|
|
|
line_len += column_len + 1; /* "+1" for space or \n */
|
|
|
|
|
if (line_len > line_buf_len) {
|
|
|
|
|
line_buf_len *= 2;
|
|
|
|
|
line_buf = g_realloc(line_buf, line_buf_len + 1);
|
|
|
|
|
}
|
|
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
/* Right-justify the packet number column. */
|
|
|
|
|
if (cf->cinfo.col_fmt[i] == COL_NUMBER)
|
2000-02-21 08:18:00 +00:00
|
|
|
sprintf(cp, "%*s", col_widths[i], cf->cinfo.col_data[i]);
|
1999-09-12 06:11:51 +00:00
|
|
|
else
|
2000-02-21 08:18:00 +00:00
|
|
|
sprintf(cp, "%-*s", col_widths[i], cf->cinfo.col_data[i]);
|
|
|
|
|
cp += column_len;
|
1999-09-12 06:11:51 +00:00
|
|
|
if (i == cf->cinfo.num_cols - 1)
|
2000-01-06 07:33:35 +00:00
|
|
|
*cp++ = '\n';
|
1999-09-12 06:11:51 +00:00
|
|
|
else
|
2000-01-06 07:33:35 +00:00
|
|
|
*cp++ = ' ';
|
1999-09-12 06:11:51 +00:00
|
|
|
}
|
2000-01-06 07:33:35 +00:00
|
|
|
*cp = '\0';
|
|
|
|
|
print_line(cf->print_fh, print_args->format, line_buf);
|
1999-09-12 06:11:51 +00:00
|
|
|
} else {
|
|
|
|
|
if (print_separator)
|
2000-01-06 07:33:35 +00:00
|
|
|
print_line(cf->print_fh, print_args->format, "\n");
|
1999-08-10 04:13:37 +00:00
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
/* Create the logical protocol tree. */
|
|
|
|
|
protocol_tree = proto_tree_create_root();
|
|
|
|
|
dissect_packet(cf->pd, fd, protocol_tree);
|
1999-08-10 04:13:37 +00:00
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
/* Print the information in that tree. */
|
1999-09-29 22:19:24 +00:00
|
|
|
proto_tree_print(FALSE, print_args, (GNode *)protocol_tree,
|
1999-09-12 20:23:43 +00:00
|
|
|
cf->pd, fd, cf->print_fh);
|
1999-08-10 04:13:37 +00:00
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
proto_tree_free(protocol_tree);
|
1999-08-10 04:13:37 +00:00
|
|
|
|
1999-09-29 22:19:24 +00:00
|
|
|
if (print_args->print_hex) {
|
|
|
|
|
/* Print the full packet data as hex. */
|
2000-01-06 07:33:35 +00:00
|
|
|
print_hex_data(cf->print_fh, print_args->format, cf->pd,
|
|
|
|
|
fd->cap_len, fd->encoding);
|
1999-09-29 22:19:24 +00:00
|
|
|
}
|
|
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
/* Print a blank line if we print anything after this. */
|
|
|
|
|
print_separator = TRUE;
|
|
|
|
|
}
|
|
|
|
|
}
|
1999-08-10 04:13:37 +00:00
|
|
|
}
|
1999-07-23 08:29:24 +00:00
|
|
|
|
1999-09-12 20:23:43 +00:00
|
|
|
if (col_widths != NULL)
|
|
|
|
|
g_free(col_widths);
|
2000-02-21 08:18:00 +00:00
|
|
|
if (line_buf != NULL)
|
|
|
|
|
g_free(line_buf);
|
1999-09-12 20:23:43 +00:00
|
|
|
|
2000-01-06 07:33:35 +00:00
|
|
|
print_finale(cf->print_fh, print_args->format);
|
1999-07-23 21:09:25 +00:00
|
|
|
|
1999-09-12 06:11:51 +00:00
|
|
|
close_print_dest(print_args->to_file, cf->print_fh);
|
1999-09-13 23:45:22 +00:00
|
|
|
|
|
|
|
|
gtk_progress_bar_update(GTK_PROGRESS_BAR(prog_bar), 0);
|
|
|
|
|
|
1999-07-23 08:29:24 +00:00
|
|
|
cf->print_fh = NULL;
|
|
|
|
|
return TRUE;
|
|
|
|
|
}
|
|
|
|
|
|
1999-06-22 03:39:07 +00:00
|
|
|
/* Scan through the packet list and change all columns that use the
|
|
|
|
|
"command-line-specified" time stamp format to use the current
|
|
|
|
|
value of that format. */
|
|
|
|
|
void
|
|
|
|
|
change_time_formats(capture_file *cf)
|
|
|
|
|
{
|
1999-08-10 04:13:37 +00:00
|
|
|
frame_data *fd;
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
int row;
|
1999-06-22 03:39:07 +00:00
|
|
|
int i;
|
1999-07-22 21:14:13 +00:00
|
|
|
GtkStyle *pl_style;
|
1999-06-22 03:39:07 +00:00
|
|
|
|
|
|
|
|
/* Freeze the packet list while we redo it, so we don't get any
|
|
|
|
|
screen updates while it happens. */
|
1999-07-28 03:29:02 +00:00
|
|
|
freeze_clist(cf);
|
1999-06-22 03:39:07 +00:00
|
|
|
|
1999-08-14 03:36:30 +00:00
|
|
|
/* Iterate through the list of packets, checking whether the packet
|
|
|
|
|
is in a row of the summary list and, if so, whether there are
|
|
|
|
|
any columns that show the time in the "command-line-specified"
|
|
|
|
|
format and, if so, update that row. */
|
1999-08-10 04:13:37 +00:00
|
|
|
for (fd = cf->plist; fd != NULL; fd = fd->next) {
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
/* Find what row this packet is in. */
|
|
|
|
|
row = gtk_clist_find_row_from_data(GTK_CLIST(packet_list), fd);
|
|
|
|
|
|
|
|
|
|
if (row != -1) {
|
|
|
|
|
/* This packet is in the summary list, on row "row". */
|
1999-08-14 03:36:30 +00:00
|
|
|
|
|
|
|
|
/* XXX - there really should be a way of checking "cf->cinfo" for this;
|
|
|
|
|
the answer isn't going to change from packet to packet, so we should
|
|
|
|
|
simply skip all the "change_time_formats()" work if we're not
|
|
|
|
|
changing anything. */
|
|
|
|
|
fd->cinfo = &cf->cinfo;
|
|
|
|
|
if (check_col(fd, COL_CLS_TIME)) {
|
|
|
|
|
/* There are columns that show the time in the "command-line-specified"
|
|
|
|
|
format; update them. */
|
|
|
|
|
for (i = 0; i < cf->cinfo.num_cols; i++) {
|
|
|
|
|
if (cf->cinfo.fmt_matx[i][COL_CLS_TIME]) {
|
|
|
|
|
/* This is one of the columns that shows the time in
|
|
|
|
|
"command-line-specified" format; update it. */
|
Generalize the "ip_src" and "ip_dst" members of the "packet_info"
structure to "dl_src"/"dl_dst", "net_src"/"net_dst", and "src"/"dst"
addresses, where an address is an address type, an address length in
bytes, and a pointer to that many bytes.
"dl_{src,dst}" are the link-layer source/destination; "net_{src,dst}"
are the network-layer source/destination; "{src,dst}" are the
source/destination from the highest of those two layers that we have in
the packet.
Add a port type to "packet_info" as well, specifying whether it's a TCP
or UDP port.
Don't set the address and port columns in the dissector functions; just
set the address and port members of the "packet_info" structure. Set
the columns in "fill_in_columns()"; this means that if we're showing
COL_{DEF,RES,UNRES}_SRC" or "COL_{DEF,RES,UNRES}_DST", we only generate
the string from "src" or "dst", we don't generate a string for the
link-layer address and then overwrite it with a string for the
network-layer address (generating those strings costs CPU).
Add support for "conversations", where a "conversation" is (at present)
a source and destination address and a source and destination port. (In
the future, we may support "conversations" above the transport layer,
e.g. a TFTP conversation, where the first packet goes from the client to
the TFTP server port, but the reply comes back from a different port,
and all subsequent packets go between the client address/port and the
server address/new port, or an NFS conversation, which might include
lock manager, status monitor, and mount packets, as well as NFS
packets.)
Currently, all we support is a call that takes the source and
destination address/port pairs, looks them up in a hash table, and:
if nothing is found, creates a new entry in the hash table, and
assigns it a unique 32-bit conversation ID, and returns that
conversation ID;
if an entry is found, returns its conversation ID.
Use that in the SMB and AFS code to keep track of individual SMB or AFS
conversations. We need to match up requests and replies, as, for
certain replies, the operation code for the request to which it's a
reply doesn't show up in the reply - you have to find the request with a
matching transaction ID. Transaction IDs are per-conversation, so the
hash table for requests should include a conversation ID and transaction
ID as the key.
This allows SMB and AFS decoders to handle IPv4 or IPv6 addresses
transparently (and should allow the SMB decoder to handle NetBIOS atop
other protocols as well, if the source and destination address and port
values in the "packet_info" structure are set appropriately).
In the "Follow TCP Connection" code, check to make sure that the
addresses are IPv4 addressses; ultimately, that code should be changed
to use the conversation code instead, which will let it handle IPv6
transparently.
svn path=/trunk/; revision=909
1999-10-22 07:18:23 +00:00
|
|
|
cf->cinfo.col_data[i][0] = '\0';
|
|
|
|
|
col_set_cls_time(fd, i);
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
gtk_clist_set_text(GTK_CLIST(packet_list), row, i,
|
1999-08-10 04:13:37 +00:00
|
|
|
cf->cinfo.col_data[i]);
|
1999-08-14 03:36:30 +00:00
|
|
|
}
|
1999-08-10 04:13:37 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
1999-06-22 03:39:07 +00:00
|
|
|
|
|
|
|
|
/* Set the column widths of those columns that show the time in
|
|
|
|
|
"command-line-specified" format. */
|
1999-07-22 21:14:13 +00:00
|
|
|
pl_style = gtk_widget_get_style(packet_list);
|
1999-06-22 03:39:07 +00:00
|
|
|
for (i = 0; i < cf->cinfo.num_cols; i++) {
|
|
|
|
|
if (cf->cinfo.fmt_matx[i][COL_CLS_TIME]) {
|
|
|
|
|
gtk_clist_set_column_width(GTK_CLIST(packet_list), i,
|
2000-01-10 01:44:00 +00:00
|
|
|
gdk_string_width(pl_style->font, get_column_longest_string(COL_CLS_TIME)));
|
1999-06-22 03:39:07 +00:00
|
|
|
}
|
|
|
|
|
}
|
1999-06-19 03:14:32 +00:00
|
|
|
|
1999-06-19 01:14:51 +00:00
|
|
|
/* Unfreeze the packet list. */
|
1999-07-28 03:29:02 +00:00
|
|
|
thaw_clist(cf);
|
1998-09-16 02:39:15 +00:00
|
|
|
}
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
|
1999-08-05 00:23:07 +00:00
|
|
|
static void
|
|
|
|
|
clear_tree_and_hex_views(void)
|
|
|
|
|
{
|
|
|
|
|
/* Clear the hex dump. */
|
|
|
|
|
gtk_text_freeze(GTK_TEXT(byte_view));
|
|
|
|
|
gtk_text_set_point(GTK_TEXT(byte_view), 0);
|
|
|
|
|
gtk_text_forward_delete(GTK_TEXT(byte_view),
|
|
|
|
|
gtk_text_get_length(GTK_TEXT(byte_view)));
|
1999-08-07 01:25:04 +00:00
|
|
|
gtk_text_thaw(GTK_TEXT(byte_view));
|
1999-08-05 00:23:07 +00:00
|
|
|
|
Changed the protocol tree widget from a GtkTree to a GtkCTree. The two reasons
I did this:
First, Havoc Pennington, in "GTK+/Gnome Application Development", in
Appendix seciton A.3.88, recommends using GtkCTree instead of GtkTree
because GtkCtree is faster, and GtkTree has limitation on its total row
height: since it must fit inside a GdkWindow, it is limited to 32,768
pixels of height. GtkTree is more flexible with regards to the types of
widgets that can be placed in the tree, but since we deal only with text,
that doesn't matter, at least for now.
Secondly, a GtkTree doesn't allow arrow-key navigation (at least as far
as I could tell). It always bothered me that the up and down arrow keys
worked in the packet list and in the hex dump, but no in the protocol tree.
GtkCTree does allow arrow-key navigation. In fact, GtkCTree is a subclass
of GtkCList (the packet list widget), so they behave a lot alike.
I went ahead and fixed the selection bar which has been bothering Richard
for a long time now. :) In the GUI preferences dialogue, you can now set
both the packet list selection bar and the protocol tree selection bar
to either "browse" or "select" mode. "browse" mode is what you're used to:
the arrow keys move an outline of the selection bar, but do not change
the selection. "select" mode does change the selection when the arrow keys
are pressed. The default behavior is set to "select", which seems more
natural for a first-time user.
svn path=/trunk/; revision=1393
1999-12-29 20:10:12 +00:00
|
|
|
/* Remove all nodes in ctree. This is how it's done in testgtk.c in GTK+ */
|
|
|
|
|
gtk_clist_clear ( GTK_CLIST(tree_view) );
|
1999-12-15 07:03:11 +00:00
|
|
|
|
1999-08-05 00:23:07 +00:00
|
|
|
}
|
|
|
|
|
|
1999-11-06 06:54:24 +00:00
|
|
|
gboolean
|
1999-11-06 06:28:07 +00:00
|
|
|
find_packet(capture_file *cf, dfilter *sfcode)
|
|
|
|
|
{
|
|
|
|
|
frame_data *start_fd;
|
|
|
|
|
frame_data *fd;
|
|
|
|
|
frame_data *new_fd = NULL;
|
|
|
|
|
guint32 progbar_quantum;
|
|
|
|
|
guint32 progbar_nextstep;
|
|
|
|
|
int count;
|
|
|
|
|
proto_tree *protocol_tree;
|
2000-04-07 07:48:15 +00:00
|
|
|
gboolean frame_matched;
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
int row;
|
1999-11-06 06:28:07 +00:00
|
|
|
|
|
|
|
|
start_fd = cf->current_frame;
|
|
|
|
|
if (start_fd != NULL) {
|
|
|
|
|
gtk_progress_set_activity_mode(GTK_PROGRESS(prog_bar), FALSE);
|
|
|
|
|
|
|
|
|
|
/* Iterate through the list of packets, starting at the packet we've
|
|
|
|
|
picked, calling a routine to run the filter on the packet, see if
|
|
|
|
|
it matches, and stop if so. */
|
|
|
|
|
count = 0;
|
|
|
|
|
fd = start_fd;
|
|
|
|
|
|
|
|
|
|
proto_tree_is_visible = FALSE;
|
|
|
|
|
|
|
|
|
|
/* Update the progress bar when it gets to this value. */
|
|
|
|
|
progbar_nextstep = 0;
|
|
|
|
|
/* When we reach the value that triggers a progress bar update,
|
2000-01-08 23:49:33 +00:00
|
|
|
bump that value by this amount. */
|
1999-11-06 06:28:07 +00:00
|
|
|
progbar_quantum = cf->count/N_PROGBAR_UPDATES;
|
|
|
|
|
gtk_progress_bar_set_orientation(GTK_PROGRESS_BAR(prog_bar), GTK_PROGRESS_LEFT_TO_RIGHT);
|
|
|
|
|
|
|
|
|
|
fd = start_fd;
|
|
|
|
|
for (;;) {
|
|
|
|
|
/* Update the progress bar, but do it only N_PROGBAR_UPDATES times;
|
|
|
|
|
when we update it, we have to run the GTK+ main loop to get it
|
|
|
|
|
to repaint what's pending, and doing so may involve an "ioctl()"
|
|
|
|
|
to see if there's any pending input from an X server, and doing
|
|
|
|
|
that for every packet can be costly, especially on a big file. */
|
|
|
|
|
if (count >= progbar_nextstep) {
|
|
|
|
|
/* let's not divide by zero. I should never be started
|
|
|
|
|
* with count == 0, so let's assert that
|
|
|
|
|
*/
|
|
|
|
|
g_assert(cf->count > 0);
|
|
|
|
|
|
|
|
|
|
gtk_progress_bar_update(GTK_PROGRESS_BAR(prog_bar),
|
|
|
|
|
(gfloat) count / cf->count);
|
|
|
|
|
|
|
|
|
|
progbar_nextstep += progbar_quantum;
|
|
|
|
|
while (gtk_events_pending())
|
|
|
|
|
gtk_main_iteration();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Go past the current frame. */
|
|
|
|
|
if (cf->sbackward) {
|
|
|
|
|
/* Go on to the previous frame. */
|
|
|
|
|
fd = fd->prev;
|
|
|
|
|
if (fd == NULL)
|
|
|
|
|
fd = cf->plist_end; /* wrap around */
|
|
|
|
|
} else {
|
|
|
|
|
/* Go on to the next frame. */
|
|
|
|
|
fd = fd->next;
|
|
|
|
|
if (fd == NULL)
|
|
|
|
|
fd = cf->plist; /* wrap around */
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (fd == start_fd) {
|
|
|
|
|
/* We're back to the frame we were on originally. The search
|
|
|
|
|
failed. */
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
2000-01-08 23:49:33 +00:00
|
|
|
count++;
|
|
|
|
|
|
1999-11-06 06:28:07 +00:00
|
|
|
/* Is this packet in the display? */
|
|
|
|
|
if (fd->passed_dfilter) {
|
|
|
|
|
/* Yes. Does it match the search filter? */
|
|
|
|
|
protocol_tree = proto_tree_create_root();
|
|
|
|
|
wtap_seek_read(cf->cd_t, cf->fh, fd->file_off, cf->pd, fd->cap_len);
|
|
|
|
|
dissect_packet(cf->pd, fd, protocol_tree);
|
2000-04-07 07:48:15 +00:00
|
|
|
frame_matched = dfilter_apply(sfcode, protocol_tree, cf->pd);
|
|
|
|
|
proto_tree_free(protocol_tree);
|
|
|
|
|
if (frame_matched) {
|
1999-11-06 06:28:07 +00:00
|
|
|
new_fd = fd;
|
|
|
|
|
break; /* found it! */
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
gtk_progress_bar_update(GTK_PROGRESS_BAR(prog_bar), 0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (new_fd != NULL) {
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
/* We found a frame. Find what row it's in. */
|
|
|
|
|
row = gtk_clist_find_row_from_data(GTK_CLIST(packet_list), new_fd);
|
|
|
|
|
g_assert(row != -1);
|
|
|
|
|
|
|
|
|
|
/* Make it visible, and select it. */
|
|
|
|
|
if (!gtk_clist_row_is_visible(GTK_CLIST(packet_list), row))
|
|
|
|
|
gtk_clist_moveto(GTK_CLIST(packet_list), row, -1, 0.0, 0.0);
|
2000-01-05 07:22:47 +00:00
|
|
|
|
|
|
|
|
/* XXX - why is there no "gtk_clist_set_focus_row()", so that we
|
|
|
|
|
can make the row for the frame we found the focus row?
|
|
|
|
|
|
|
|
|
|
See
|
|
|
|
|
|
|
|
|
|
http://www.gnome.org/mailing-lists/archives/gtk-list/2000-January/0038.shtml
|
|
|
|
|
|
|
|
|
|
*/
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
GTK_CLIST(packet_list)->focus_row = row;
|
|
|
|
|
gtk_clist_select_row(GTK_CLIST(packet_list), row, -1);
|
1999-11-06 06:54:24 +00:00
|
|
|
return TRUE; /* success */
|
|
|
|
|
} else
|
|
|
|
|
return FALSE; /* failure */
|
1999-11-06 06:28:07 +00:00
|
|
|
}
|
1999-08-15 07:28:23 +00:00
|
|
|
|
1999-11-30 07:27:37 +00:00
|
|
|
goto_result_t
|
1999-11-08 01:03:40 +00:00
|
|
|
goto_frame(capture_file *cf, guint fnumber)
|
|
|
|
|
{
|
|
|
|
|
frame_data *fd;
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
int row;
|
1999-11-08 01:03:40 +00:00
|
|
|
|
|
|
|
|
for (fd = cf->plist; fd != NULL && fd->num < fnumber; fd = fd->next)
|
|
|
|
|
;
|
|
|
|
|
|
1999-11-30 07:27:37 +00:00
|
|
|
if (fd == NULL)
|
|
|
|
|
return NO_SUCH_FRAME; /* we didn't find that frame */
|
|
|
|
|
if (!fd->passed_dfilter)
|
|
|
|
|
return FRAME_NOT_DISPLAYED; /* the frame with that number isn't displayed */
|
|
|
|
|
|
|
|
|
|
/* We found that frame, and it's currently being displayed.
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
Find what row it's in. */
|
|
|
|
|
row = gtk_clist_find_row_from_data(GTK_CLIST(packet_list), fd);
|
|
|
|
|
g_assert(row != -1);
|
|
|
|
|
|
|
|
|
|
/* Make it visible, and select it. */
|
|
|
|
|
if (!gtk_clist_row_is_visible(GTK_CLIST(packet_list), row))
|
|
|
|
|
gtk_clist_moveto(GTK_CLIST(packet_list), row, -1, 0.0, 0.0);
|
2000-01-05 07:22:47 +00:00
|
|
|
|
|
|
|
|
/* See above complaint about the lack of "gtk_clist_set_focus_row()". */
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
GTK_CLIST(packet_list)->focus_row = row;
|
|
|
|
|
gtk_clist_select_row(GTK_CLIST(packet_list), row, -1);
|
1999-11-30 07:27:37 +00:00
|
|
|
return FOUND_FRAME;
|
1999-11-08 01:03:40 +00:00
|
|
|
}
|
|
|
|
|
|
1999-07-24 03:22:50 +00:00
|
|
|
/* Select the packet on a given row. */
|
|
|
|
|
void
|
|
|
|
|
select_packet(capture_file *cf, int row)
|
|
|
|
|
{
|
1999-08-10 04:13:37 +00:00
|
|
|
frame_data *fd;
|
2000-01-03 22:53:34 +00:00
|
|
|
|
We already set the foreground and background color for every frame,
which means we're already doing a "do something to the last row in the
packet list" operation on every frame we add to the list, so adding a
call to "gtk_clist_set_row_data()" won't make matters worse.
In addition, we already set one column in a row on a "change time
format" operation, so finding the row for a frame by calling
"gtk_clist_find_row_from_data()" doesn't turn a constant-time operation
into a linear-time operation, it just cranks the proportionality
constant up - it was quadratic before, alas, and it's still quadratic.
Adding calls to "gtk_clist_find_row_from_data()" to the "Find Frame" and
"Go To Frame" code does add an extra linear operation there, but those
operations shouldn't be common - and "Go To Frame", going to the last
frame on an ~100,000-frame big capture file, was quick, at least on my
450 MHz Pentium II machine, so maybe it won't be too bad.
And "select_packet()" either has to search the frame table for the frame
with the specified row number, or has to call "gtk_clist_get_row_data()"
to do that - the first is linear in the position of the frame in the
frame table, and the latter is linear in its position in the CList, and
the latter is less than or equal to the former, so the only thing making
it worse would be a change in the proportionality constant.
So it probably won't hurt performance by much.
Furthermore, if we add the ability to sort the display on an arbitrary
column, or to delete frames from the display - both of which are in the
wish list - storing the row number of the frame in the "frame_data"
structure won't necessarily work, as the row number can change out from
under us.
Therefore, reinstate the old way of doing things, where we associate
with each row a pointer to the "frame_data" structure for the row, using
"gtk_clist_set_row_data()".
svn path=/trunk/; revision=1703
2000-03-08 06:48:01 +00:00
|
|
|
/* Get the frame data struct pointer for this frame */
|
|
|
|
|
fd = (frame_data *) gtk_clist_get_row_data(GTK_CLIST(packet_list), row);
|
1999-10-05 04:34:00 +00:00
|
|
|
|
2000-03-12 03:13:58 +00:00
|
|
|
if (fd == NULL) {
|
|
|
|
|
/* XXX - if a GtkCList's selection mode is GTK_SELECTION_BROWSE, when
|
|
|
|
|
the first entry is added to it by "real_insert_row()", that row
|
|
|
|
|
is selected (see "real_insert_row()", in "gtk/gtkclist.c", in both
|
|
|
|
|
our version and the vanilla GTK+ version).
|
|
|
|
|
|
|
|
|
|
This means that a "select-row" signal is emitted; this causes
|
|
|
|
|
"packet_list_select_cb()" to be called, which causes "select_packet()"
|
|
|
|
|
to be called.
|
|
|
|
|
|
|
|
|
|
"select_packet()" fetches, above, the data associated with the
|
|
|
|
|
row that was selected; however, as "gtk_clist_append()", which
|
|
|
|
|
called "real_insert_row()", hasn't yet returned, we haven't yet
|
|
|
|
|
associated any data with that row, so we get back a null pointer.
|
|
|
|
|
|
|
|
|
|
We can't assume that there's only one frame in the frame list,
|
|
|
|
|
either, as we may be filtering the display.
|
|
|
|
|
|
|
|
|
|
We therefore assume that, if "row" is 0, i.e. the first row
|
|
|
|
|
is being selected, and "cf->first_displayed" equals
|
|
|
|
|
"cf->last_displayed", i.e. there's only one frame being
|
|
|
|
|
displayed, that frame is the frame we want.
|
|
|
|
|
|
|
|
|
|
This means we have to set "cf->first_displayed" and
|
|
|
|
|
"cf->last_displayed" before adding the row to the
|
|
|
|
|
GtkCList; see the comment in "add_packet_to_packet_list()". */
|
|
|
|
|
|
|
|
|
|
if (row == 0 && cf->first_displayed == cf->last_displayed)
|
|
|
|
|
fd = cf->first_displayed;
|
|
|
|
|
}
|
|
|
|
|
|
1999-11-06 06:28:07 +00:00
|
|
|
/* Record that this frame is the current frame, and that it's selected. */
|
|
|
|
|
cf->current_frame = fd;
|
|
|
|
|
cf->current_frame_is_selected = TRUE;
|
1999-07-24 03:22:50 +00:00
|
|
|
|
|
|
|
|
/* Get the data in that frame. */
|
1999-11-06 06:28:07 +00:00
|
|
|
wtap_seek_read (cf->cd_t, cf->fh, fd->file_off, cf->pd, fd->cap_len);
|
1999-07-24 03:22:50 +00:00
|
|
|
|
|
|
|
|
/* Create the logical protocol tree. */
|
|
|
|
|
if (cf->protocol_tree)
|
|
|
|
|
proto_tree_free(cf->protocol_tree);
|
|
|
|
|
cf->protocol_tree = proto_tree_create_root();
|
1999-08-26 07:01:44 +00:00
|
|
|
proto_tree_is_visible = TRUE;
|
1999-11-06 06:28:07 +00:00
|
|
|
dissect_packet(cf->pd, cf->current_frame, cf->protocol_tree);
|
1999-07-24 03:22:50 +00:00
|
|
|
|
|
|
|
|
/* Display the GUI protocol tree and hex dump. */
|
1999-08-05 00:23:07 +00:00
|
|
|
clear_tree_and_hex_views();
|
1999-07-24 03:22:50 +00:00
|
|
|
proto_tree_draw(cf->protocol_tree, tree_view);
|
1999-11-06 06:28:07 +00:00
|
|
|
packet_hex_print(GTK_TEXT(byte_view), cf->pd, cf->current_frame->cap_len,
|
1999-11-22 06:24:56 +00:00
|
|
|
-1, -1, cf->current_frame->encoding);
|
1999-07-24 03:22:50 +00:00
|
|
|
|
2000-01-03 03:57:04 +00:00
|
|
|
/* A packet is selected. */
|
|
|
|
|
set_menus_for_selected_packet(TRUE);
|
1999-07-24 03:22:50 +00:00
|
|
|
}
|
|
|
|
|
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
/* Unselect the selected packet, if any. */
|
|
|
|
|
void
|
|
|
|
|
unselect_packet(capture_file *cf)
|
|
|
|
|
{
|
1999-11-06 06:28:07 +00:00
|
|
|
cf->current_frame_is_selected = FALSE;
|
1999-07-24 03:22:50 +00:00
|
|
|
|
|
|
|
|
/* Destroy the protocol tree for that packet. */
|
|
|
|
|
if (cf->protocol_tree != NULL) {
|
|
|
|
|
proto_tree_free(cf->protocol_tree);
|
|
|
|
|
cf->protocol_tree = NULL;
|
|
|
|
|
}
|
|
|
|
|
|
1999-11-19 22:32:00 +00:00
|
|
|
finfo_selected = NULL;
|
|
|
|
|
|
1999-08-05 00:23:07 +00:00
|
|
|
/* Clear out the display of that packet. */
|
|
|
|
|
clear_tree_and_hex_views();
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
|
2000-01-03 03:57:04 +00:00
|
|
|
/* No packet is selected. */
|
|
|
|
|
set_menus_for_selected_packet(FALSE);
|
Have "close_cap_file()" disable all menu items that make sense only if
you have a capture.
Leave the job of enabling and disabling menu items that make sense only
if you have a capture (except for "File/Save" and "File/Save As...", for
now) up to "load_cap_file()", "close_cap_file()", and the like - don't
scatter that stuff throughout the code.
Disable "File/Print Packet" if no packet is selected; enable it only if
a packet is selected.
If there's a selected packet, and a display filter is run:
if the selected packet passed the filter, re-select it;
if the selected packet didn't pass the filter, un-select it.
If we've opened a live "pcap" capture, but can't do the capture because
we can't get the netmask info, or can't parse the capture filter string,
or can't install the filter, close the live capture and the dump and
delete the dump file.
If we failed to open a live "pcap" capture, don't try to read the
capture file - it doesn't exist.
svn path=/trunk/; revision=384
1999-07-24 02:42:52 +00:00
|
|
|
}
|
|
|
|
|
|
1999-07-28 03:29:02 +00:00
|
|
|
static void
|
|
|
|
|
freeze_clist(capture_file *cf)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
/* Make the column sizes static, so they don't adjust while
|
|
|
|
|
we're reading the capture file (freezing the clist doesn't
|
|
|
|
|
seem to suffice). */
|
|
|
|
|
for (i = 0; i < cf->cinfo.num_cols; i++)
|
|
|
|
|
gtk_clist_set_column_auto_resize(GTK_CLIST(packet_list), i, FALSE);
|
|
|
|
|
gtk_clist_freeze(GTK_CLIST(packet_list));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
thaw_clist(capture_file *cf)
|
|
|
|
|
{
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < cf->cinfo.num_cols; i++) {
|
1999-07-28 03:38:42 +00:00
|
|
|
if (get_column_resize_type(cf->cinfo.col_fmt[i]) == RESIZE_MANUAL) {
|
|
|
|
|
/* Set this column's width to the appropriate value. */
|
|
|
|
|
gtk_clist_set_column_width(GTK_CLIST(packet_list), i,
|
|
|
|
|
cf->cinfo.col_width[i]);
|
|
|
|
|
} else {
|
|
|
|
|
/* Make this column's size dynamic, so that it adjusts to the
|
|
|
|
|
appropriate size. */
|
1999-07-28 03:29:02 +00:00
|
|
|
gtk_clist_set_column_auto_resize(GTK_CLIST(packet_list), i, TRUE);
|
1999-07-28 03:38:42 +00:00
|
|
|
}
|
1999-07-28 03:29:02 +00:00
|
|
|
}
|
|
|
|
|
gtk_clist_thaw(GTK_CLIST(packet_list));
|
|
|
|
|
|
|
|
|
|
/* Hopefully, the columns have now gotten their appropriate sizes;
|
|
|
|
|
make them resizeable - a column that auto-resizes cannot be
|
|
|
|
|
resized by the user, and *vice versa*. */
|
|
|
|
|
for (i = 0; i < cf->cinfo.num_cols; i++)
|
|
|
|
|
gtk_clist_set_column_resizeable(GTK_CLIST(packet_list), i, TRUE);
|
|
|
|
|
}
|
|
|
|
|
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
int
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
save_cap_file(char *fname, capture_file *cf, gboolean save_filtered,
|
|
|
|
|
guint save_format)
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
{
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
gchar *from_filename;
|
|
|
|
|
gchar *name_ptr, *save_msg, *save_fmt = " Saving: %s...";
|
|
|
|
|
size_t msg_len;
|
|
|
|
|
int err;
|
|
|
|
|
gboolean do_copy;
|
|
|
|
|
int from_fd, to_fd, nread, nwritten;
|
|
|
|
|
wtap_dumper *pdh;
|
|
|
|
|
frame_data *fd;
|
|
|
|
|
struct wtap_pkthdr hdr;
|
|
|
|
|
guint8 pd[65536];
|
|
|
|
|
|
2000-01-25 04:31:17 +00:00
|
|
|
name_ptr = get_basename(fname);
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
msg_len = strlen(name_ptr) + strlen(save_fmt) + 2;
|
|
|
|
|
save_msg = g_malloc(msg_len);
|
|
|
|
|
snprintf(save_msg, msg_len, save_fmt, name_ptr);
|
|
|
|
|
gtk_statusbar_push(GTK_STATUSBAR(info_bar), file_ctx, save_msg);
|
|
|
|
|
g_free(save_msg);
|
|
|
|
|
|
|
|
|
|
if (!save_filtered && save_format == cf->cd_t) {
|
|
|
|
|
/* We're not filtering packets, and we're saving it in the format
|
|
|
|
|
it's already in, so we can just move or copy the raw data. */
|
|
|
|
|
|
|
|
|
|
/* In this branch, we set "err" only if we get an error, so we
|
|
|
|
|
must first clear it. */
|
|
|
|
|
err = 0;
|
|
|
|
|
if (cf->is_tempfile) {
|
|
|
|
|
/* The file being saved is a temporary file from a live
|
|
|
|
|
capture, so it doesn't need to stay around under that name;
|
|
|
|
|
first, try renaming the capture buffer file to the new name. */
|
2000-03-28 08:11:52 +00:00
|
|
|
#ifndef WIN32
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
if (rename(cf->filename, fname) == 0) {
|
|
|
|
|
/* That succeeded - there's no need to copy the source file. */
|
|
|
|
|
from_filename = NULL;
|
|
|
|
|
do_copy = FALSE;
|
|
|
|
|
} else {
|
|
|
|
|
if (errno == EXDEV) {
|
|
|
|
|
/* They're on different file systems, so we have to copy the
|
|
|
|
|
file. */
|
|
|
|
|
do_copy = TRUE;
|
|
|
|
|
from_filename = cf->filename;
|
|
|
|
|
} else {
|
|
|
|
|
/* The rename failed, but not because they're on different
|
|
|
|
|
file systems - put up an error message. (Or should we
|
|
|
|
|
just punt and try to copy? The only reason why I'd
|
|
|
|
|
expect the rename to fail and the copy to succeed would
|
|
|
|
|
be if we didn't have permission to remove the file from
|
|
|
|
|
the temporary directory, and that might be fixable - but
|
|
|
|
|
is it worth requiring the user to go off and fix it?) */
|
|
|
|
|
err = errno;
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_rename_error_message(err), fname);
|
|
|
|
|
goto done;
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
}
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
}
|
2000-03-28 08:11:52 +00:00
|
|
|
#else
|
|
|
|
|
do_copy = TRUE;
|
|
|
|
|
from_filename = cf->filename;
|
|
|
|
|
#endif
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
} else {
|
|
|
|
|
/* It's a permanent file, so we should copy it, and not remove the
|
|
|
|
|
original. */
|
|
|
|
|
do_copy = TRUE;
|
|
|
|
|
from_filename = cf->filename;
|
|
|
|
|
}
|
|
|
|
|
/* Copy the file, if we haven't moved it. */
|
|
|
|
|
if (do_copy) {
|
|
|
|
|
/* Copy the raw bytes of the file. */
|
2000-02-03 06:35:27 +00:00
|
|
|
from_fd = open(from_filename, O_RDONLY | O_BINARY);
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
if (from_fd < 0) {
|
|
|
|
|
err = errno;
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_open_error_message(err, TRUE), from_filename);
|
|
|
|
|
goto done;
|
|
|
|
|
}
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
|
2000-03-28 08:11:52 +00:00
|
|
|
/* Use open() instead of creat() so that we can pass the O_BINARY
|
|
|
|
|
flag, which is relevant on Win32; it appears that "creat()"
|
|
|
|
|
may open the file in text mode, not binary mode, but we want
|
|
|
|
|
to copy the raw bytes of the file, so we need the output file
|
|
|
|
|
to be open in binary mode. */
|
|
|
|
|
to_fd = open(fname, O_WRONLY | O_CREAT | O_TRUNC | O_BINARY, 0644);
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
if (to_fd < 0) {
|
|
|
|
|
err = errno;
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_open_error_message(err, TRUE), fname);
|
|
|
|
|
close(from_fd);
|
|
|
|
|
goto done;
|
|
|
|
|
}
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
while ((nread = read(from_fd, pd, sizeof pd)) > 0) {
|
|
|
|
|
nwritten = write(to_fd, pd, nread);
|
|
|
|
|
if (nwritten < nread) {
|
|
|
|
|
if (nwritten < 0)
|
|
|
|
|
err = errno;
|
|
|
|
|
else
|
|
|
|
|
err = WTAP_ERR_SHORT_WRITE;
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_write_error_message(err), fname);
|
|
|
|
|
close(from_fd);
|
|
|
|
|
close(to_fd);
|
|
|
|
|
goto done;
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
}
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
}
|
|
|
|
|
if (nread < 0) {
|
|
|
|
|
err = errno;
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_read_error_message(err), from_filename);
|
|
|
|
|
close(from_fd);
|
|
|
|
|
close(to_fd);
|
|
|
|
|
goto done;
|
|
|
|
|
}
|
|
|
|
|
close(from_fd);
|
|
|
|
|
if (close(to_fd) < 0) {
|
|
|
|
|
err = errno;
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_close_error_message(err), fname);
|
|
|
|
|
goto done;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
/* Either we're filtering packets, or we're saving in a different
|
|
|
|
|
format; we can't do that by copying or moving the capture file,
|
|
|
|
|
we have to do it by writing the packets out in Wiretap. */
|
|
|
|
|
pdh = wtap_dump_open(fname, save_format, cf->lnk_t, cf->snap, &err);
|
|
|
|
|
if (pdh == NULL) {
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_open_error_message(err, TRUE), fname);
|
|
|
|
|
goto done;
|
|
|
|
|
}
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* XXX - have a way to save only the packets currently selected by
|
|
|
|
|
the display filter.
|
|
|
|
|
|
|
|
|
|
If we do that, should we make that file the current file? If so,
|
|
|
|
|
it means we can no longer get at the other packets. What does
|
|
|
|
|
NetMon do? */
|
|
|
|
|
for (fd = cf->plist; fd != NULL; fd = fd->next) {
|
|
|
|
|
/* XXX - do a progress bar */
|
|
|
|
|
if (!save_filtered || fd->passed_dfilter) {
|
|
|
|
|
/* Either we're saving all frames, or we're saving filtered frames
|
|
|
|
|
and this one passed the display filter - save it. */
|
|
|
|
|
hdr.ts.tv_sec = fd->abs_secs;
|
|
|
|
|
hdr.ts.tv_usec = fd->abs_usecs;
|
|
|
|
|
hdr.caplen = fd->cap_len;
|
|
|
|
|
hdr.len = fd->pkt_len;
|
|
|
|
|
hdr.pkt_encap = fd->lnk_t;
|
1999-12-12 13:25:54 +00:00
|
|
|
hdr.pseudo_header = fd->pseudo_header;
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
wtap_seek_read(cf->cd_t, cf->fh, fd->file_off, pd, fd->cap_len);
|
|
|
|
|
|
|
|
|
|
if (!wtap_dump(pdh, &hdr, pd, &err)) {
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_write_error_message(err), fname);
|
|
|
|
|
wtap_dump_close(pdh, &err);
|
|
|
|
|
goto done;
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
}
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
if (!wtap_dump_close(pdh, &err)) {
|
|
|
|
|
simple_dialog(ESD_TYPE_WARN, NULL,
|
|
|
|
|
file_close_error_message(err), fname);
|
|
|
|
|
goto done;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
done:
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* Pop the "Saving:" message off the status bar. */
|
|
|
|
|
gtk_statusbar_pop(GTK_STATUSBAR(info_bar), file_ctx);
|
|
|
|
|
if (err == 0) {
|
|
|
|
|
if (!save_filtered) {
|
|
|
|
|
/* We saved the entire capture, not just some packets from it.
|
|
|
|
|
Open and read the file we saved it to.
|
|
|
|
|
|
|
|
|
|
XXX - this is somewhat of a waste; we already have the
|
|
|
|
|
packets, all this gets us is updated file type information
|
|
|
|
|
(which we could just stuff into "cf"), and having the new
|
|
|
|
|
file be the one we have opened and from which we're reading
|
|
|
|
|
the data, and it means we have to spend time opening and
|
|
|
|
|
reading the file, which could be a significant amount of
|
|
|
|
|
time if the file is large. */
|
|
|
|
|
cf->user_saved = TRUE;
|
|
|
|
|
|
|
|
|
|
if ((err = open_cap_file(fname, FALSE, cf)) == 0) {
|
|
|
|
|
/* XXX - report errors if this fails? */
|
|
|
|
|
err = read_cap_file(cf);
|
2000-01-03 03:57:04 +00:00
|
|
|
set_menus_for_unsaved_capture_file(FALSE);
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return err;
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
char *
|
|
|
|
|
file_open_error_message(int err, int for_writing)
|
|
|
|
|
{
|
|
|
|
|
char *errmsg;
|
|
|
|
|
static char errmsg_errno[1024+1];
|
|
|
|
|
|
|
|
|
|
switch (err) {
|
|
|
|
|
|
1999-08-15 06:59:13 +00:00
|
|
|
case WTAP_ERR_NOT_REGULAR_FILE:
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
errmsg = "The file \"%s\" is invalid.";
|
|
|
|
|
break;
|
|
|
|
|
|
1999-08-15 06:59:13 +00:00
|
|
|
case WTAP_ERR_FILE_UNKNOWN_FORMAT:
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
case WTAP_ERR_UNSUPPORTED:
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
/* Seen only when opening a capture file for reading. */
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
errmsg = "The file \"%s\" is not a capture file in a format Ethereal understands.";
|
|
|
|
|
break;
|
|
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
case WTAP_ERR_UNSUPPORTED_FILE_TYPE:
|
|
|
|
|
/* Seen only when opening a capture file for writing. */
|
|
|
|
|
errmsg = "Ethereal does not support writing capture files in that format.";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case WTAP_ERR_UNSUPPORTED_ENCAP:
|
|
|
|
|
case WTAP_ERR_ENCAP_PER_PACKET_UNSUPPORTED:
|
2000-02-19 08:00:08 +00:00
|
|
|
if (for_writing)
|
|
|
|
|
errmsg = "Ethereal cannot save this capture in that format.";
|
|
|
|
|
else
|
|
|
|
|
errmsg = "The file \"%s\" is a capture for a network type that Ethereal doesn't support.";
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
break;
|
|
|
|
|
|
DLT_NULL, from "libpcap", means different things on different platforms
and in different capture files; throw in some heuristics to try to
figure out whether the 4-byte header is:
1) PPP-over-HDLC (some version of ISDN4BSD?);
2) big-endian AF_ value (BSD on big-endian platforms);
3) little-endian AF_ value (BSD on little-endian platforms);
4) two octets of 0 followed by an Ethernet type (Linux, at least
on little-endian platforms, as mutated by "libpcap").
Make a separate Wiretap encapsulation type, WTAP_ENCAP_NULL,
corresponding to DLT_NULL.
Have the PPP code dissect the frame if it's PPP-over-HDLC, and have
"ethertype()" dissect the Ethernet type and the rest of the packet if
it's a Linux-style header; dissect it ourselves only if it's an AF_
value.
Have Wiretap impose a maximum packet size of 65535 bytes, so that it
fails more gracefully when handed a corrupt "libpcap" capture file
(other capture file formats with more than a 16-bit capture length
field, if any, will have that check added later), and put that size in
"wtap.h" and have Ethereal use it as its notion of a maximum packet
size.
Have Ethereal put up a "this file appears to be damaged or corrupt"
message box if Wiretap returns a WTAP_ERR_BAD_RECORD error when opening
or reading a capture file.
Include loopback interfaces in the list of interfaces offered by the
"Capture" dialog box, but put them at the end of the list so that it
doesn't default to a loopback interface unless there are no other
interfaces. Also, don't require that an interface in the list have an
IP address associated with it, and only put one entry in the list for a
given interface (SIOCGIFCONF returns one entry per interface *address*,
not per *interface* - and even if you were to use only IP addresses, an
interface could conceivably have more than one IP address).
Exclusively use Wiretap encapsulation types internally, even when
capturing; don't use DLT_ types.
svn path=/trunk/; revision=540
1999-08-22 00:47:56 +00:00
|
|
|
case WTAP_ERR_BAD_RECORD:
|
|
|
|
|
errmsg = "The file \"%s\" appears to be damaged or corrupt.";
|
|
|
|
|
break;
|
|
|
|
|
|
Have the per-capture-file-type open routines "wtap_open_offline()" calls
return 1 on success, -1 if they got an error, and 0 if the file isn't of
the type that file is checking for, and supply an error code if they
return -1; have "wtap_open_offline()" use that error code. Also, have
the per-capture-file-type open routines treat errors accessing the file
as errors, and return -1, rather than just returning 0 so that we try
another file type.
Have the per-capture-file-type read routines "wtap_loop()" calls return
-1 and supply an error code on error (and not, as they did in some
cases, call "g_error()" and abort), and have "wtap_loop()", if the read
routine returned an error, return FALSE (and pass an error-code-pointer
argument onto the read routines, so they fill it in), and return TRUE on
success.
Add some new error codes for them to return.
Now that "wtap_loop()" can return a success/failure indication and an
error code, in "read_cap_file()" put up a message box if we get an error
reading the file, and return the error code.
Handle the additional errors we can get when opening a capture file.
If the attempt to open a capture file succeeds, but the attempt to read
it fails, don't treat that as a complete failure - we may have managed
to read some of the capture file, and we should display what we managed
to read.
svn path=/trunk/; revision=516
1999-08-19 05:31:38 +00:00
|
|
|
case WTAP_ERR_CANT_OPEN:
|
|
|
|
|
if (for_writing)
|
|
|
|
|
errmsg = "The file \"%s\" could not be created for some unknown reason.";
|
|
|
|
|
else
|
|
|
|
|
errmsg = "The file \"%s\" could not be opened for some unknown reason.";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case WTAP_ERR_SHORT_READ:
|
|
|
|
|
errmsg = "The file \"%s\" appears to have been cut short"
|
|
|
|
|
" in the middle of a packet.";
|
|
|
|
|
break;
|
|
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
case WTAP_ERR_SHORT_WRITE:
|
|
|
|
|
errmsg = "A full header couldn't be written to the file \"%s\".";
|
|
|
|
|
break;
|
|
|
|
|
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
case ENOENT:
|
|
|
|
|
if (for_writing)
|
|
|
|
|
errmsg = "The path to the file \"%s\" does not exist.";
|
|
|
|
|
else
|
|
|
|
|
errmsg = "The file \"%s\" does not exist.";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case EACCES:
|
|
|
|
|
if (for_writing)
|
|
|
|
|
errmsg = "You do not have permission to create or write to the file \"%s\".";
|
|
|
|
|
else
|
1999-08-15 06:59:13 +00:00
|
|
|
errmsg = "You do not have permission to read the file \"%s\".";
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
default:
|
1999-08-22 02:52:48 +00:00
|
|
|
sprintf(errmsg_errno, "The file \"%%s\" could not be opened: %s.",
|
|
|
|
|
wtap_strerror(err));
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
errmsg = errmsg_errno;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return errmsg;
|
|
|
|
|
}
|
|
|
|
|
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
static char *
|
|
|
|
|
file_rename_error_message(int err)
|
|
|
|
|
{
|
|
|
|
|
char *errmsg;
|
|
|
|
|
static char errmsg_errno[1024+1];
|
|
|
|
|
|
|
|
|
|
switch (err) {
|
|
|
|
|
|
|
|
|
|
case ENOENT:
|
|
|
|
|
errmsg = "The path to the file \"%s\" does not exist.";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case EACCES:
|
|
|
|
|
errmsg = "You do not have permission to move the capture file to \"%s\".";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
sprintf(errmsg_errno, "The file \"%%s\" could not be moved: %s.",
|
|
|
|
|
wtap_strerror(err));
|
|
|
|
|
errmsg = errmsg_errno;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return errmsg;
|
|
|
|
|
}
|
|
|
|
|
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
char *
|
|
|
|
|
file_read_error_message(int err)
|
|
|
|
|
{
|
|
|
|
|
static char errmsg_errno[1024+1];
|
|
|
|
|
|
1999-08-22 02:52:48 +00:00
|
|
|
sprintf(errmsg_errno, "An error occurred while reading from the file \"%%s\": %s.",
|
|
|
|
|
wtap_strerror(err));
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
return errmsg_errno;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
char *
|
|
|
|
|
file_write_error_message(int err)
|
|
|
|
|
{
|
|
|
|
|
char *errmsg;
|
|
|
|
|
static char errmsg_errno[1024+1];
|
|
|
|
|
|
|
|
|
|
switch (err) {
|
|
|
|
|
|
|
|
|
|
case ENOSPC:
|
|
|
|
|
errmsg = "The file \"%s\" could not be saved because there is no space left on the file system.";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
#ifdef EDQUOT
|
|
|
|
|
case EDQUOT:
|
|
|
|
|
errmsg = "The file \"%s\" could not be saved because you are too close to, or over, your disk quota.";
|
|
|
|
|
break;
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
default:
|
1999-08-22 02:52:48 +00:00
|
|
|
sprintf(errmsg_errno, "An error occurred while writing to the file \"%%s\": %s.",
|
|
|
|
|
wtap_strerror(err));
|
Improve the alert boxes put up for file open/read/write errors. (Some
influence came from
http://developer.apple.com/techpubs/mac/HIGuidelines/HIGuidelines-232.html
which has a section on dialog box and alert box messages. However,
we're largely dealing with technoids, not with The Rest Of Us, so I
didn't go as far as one perhaps should.)
Unfortunately, it looks like it's a bit more work to arrange that, if
you give a bad file name to the "-r" flag, the dialog box pop up only
*after* the main window pops up - it has the annoying habit of popping
up *before* the main window pops up, and sometimes getting *obscured* by
it, when I do that. The removal of the dialog box stuff from
"load_cap_file()" was intended to facilitate that work. (It might also
be nice if, when an open from the "File/Open" menu item fails, we keep
the file selection box open, and give the user a chance to correct
typos, choose another file name, etc.)
svn path=/trunk/; revision=310
1999-06-12 09:10:20 +00:00
|
|
|
errmsg = errmsg_errno;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return errmsg;
|
|
|
|
|
}
|
Allow the user to save either all of the current capture, or only the
packets that are currently being displayed from that capture.
Centralize the code to control whether "File:Save" and "File:Save As"
are enabled (and *always* have "File:Save As" enabled if you have a
capture; "File:Save" is enabled only if you have a live capture you've
not yet saved, although it does the same thing as "File:Save As").
Have the "save_file" member of a "capture_file" structure represent
*only* the file currently being *written* to by a capture, and, if there
is no capture currently in progress, have it be NULL; the name of the
file currently being *displayed" is in the "filename" member, and an
"is_tempfile" member indicates whether it's a temporary file for a live
capture or not.
Have "close_cap_file()" delete the current capture file if it's a
temporary capture file that hasn't been saved (in its entirety - saving
selected frames doesn't count). Do the same (if there *is* a current
capture file) when exiting.
The "Ready to load or capture" message is the only statusbar message in
the "main" context; "close_cap_file()" should never pop it, it should
only pop whatever message exists in the "file" context, and thus has no
need to take, as an argument, the context for the message it should pop.
Update the man page to reflect the new behavior of "File:Save" and
"File:Save As", and to reflect recent changes to "Display:Match Selected".
svn path=/trunk/; revision=1170
1999-11-30 20:50:15 +00:00
|
|
|
|
|
|
|
|
/* Check for write errors - if the file is being written to an NFS server,
|
|
|
|
|
a write error may not show up until the file is closed, as NFS clients
|
|
|
|
|
might not send writes to the server until the "write()" call finishes,
|
|
|
|
|
so that the write may fail on the server but the "write()" may succeed. */
|
|
|
|
|
static char *
|
|
|
|
|
file_close_error_message(int err)
|
|
|
|
|
{
|
|
|
|
|
char *errmsg;
|
|
|
|
|
static char errmsg_errno[1024+1];
|
|
|
|
|
|
|
|
|
|
switch (err) {
|
|
|
|
|
|
|
|
|
|
case WTAP_ERR_CANT_CLOSE:
|
|
|
|
|
errmsg = "The file \"%s\" couldn't be closed for some unknown reason.";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case WTAP_ERR_SHORT_WRITE:
|
|
|
|
|
errmsg = "Not all the data could be written to the file \"%s\".";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case ENOSPC:
|
|
|
|
|
errmsg = "The file \"%s\" could not be saved because there is no space left on the file system.";
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
#ifdef EDQUOT
|
|
|
|
|
case EDQUOT:
|
|
|
|
|
errmsg = "The file \"%s\" could not be saved because you are too close to, or over, your disk quota.";
|
|
|
|
|
break;
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
sprintf(errmsg_errno, "An error occurred while closing the file \"%%s\": %s.",
|
|
|
|
|
wtap_strerror(err));
|
|
|
|
|
errmsg = errmsg_errno;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return errmsg;
|
|
|
|
|
}
|