2013-09-06 21:57:04 +00:00
|
|
|
/* Combine dump files, either by appending or by merging by timestamp
|
2001-07-12 19:59:41 +00:00
|
|
|
*
|
2011-11-30 15:55:53 +00:00
|
|
|
* Wireshark - Network traffic analyzer
|
|
|
|
|
* By Gerald Combs <gerald@wireshark.org>
|
|
|
|
|
* Copyright 1998 Gerald Combs
|
|
|
|
|
*
|
2018-02-07 11:26:45 +00:00
|
|
|
* SPDX-License-Identifier: GPL-2.0-or-later
|
2011-11-30 15:55:53 +00:00
|
|
|
*
|
|
|
|
|
* Mergecap written by Scott Renfro <scott@renfro.org> based on
|
2001-07-12 19:59:41 +00:00
|
|
|
* editcap by Richard Sharpe and Guy Harris
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
|
2014-08-22 21:13:05 +00:00
|
|
|
#include <config.h>
|
2001-07-12 19:59:41 +00:00
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
#include <stdlib.h>
|
2004-07-13 05:58:15 +00:00
|
|
|
#include <errno.h>
|
2001-07-12 19:59:41 +00:00
|
|
|
#include <glib.h>
|
|
|
|
|
|
2021-02-14 20:54:42 +00:00
|
|
|
/*
|
|
|
|
|
* If we have getopt_long() in the system library, include <getopt.h>.
|
|
|
|
|
* Otherwise, we're using our own getopt_long() (either because the
|
|
|
|
|
* system has getopt() but not getopt_long(), as with some UN*Xes,
|
|
|
|
|
* or because it doesn't even have getopt(), as with Windows), so
|
|
|
|
|
* include our getopt_long()'s header.
|
|
|
|
|
*/
|
|
|
|
|
#ifdef HAVE_GETOPT_LONG
|
2014-07-03 04:50:54 +00:00
|
|
|
#include <getopt.h>
|
2021-02-14 20:54:42 +00:00
|
|
|
#else
|
|
|
|
|
#include <wsutil/wsgetopt.h>
|
2014-07-03 04:50:54 +00:00
|
|
|
#endif
|
|
|
|
|
|
2001-07-12 19:59:41 +00:00
|
|
|
#include <string.h>
|
2016-01-06 00:24:52 +00:00
|
|
|
|
|
|
|
|
#include <wiretap/wtap.h>
|
2001-07-12 19:59:41 +00:00
|
|
|
|
2019-01-01 00:55:23 +00:00
|
|
|
#include <ui/clopts_common.h>
|
|
|
|
|
#include <ui/cmdarg_err.h>
|
2016-03-02 14:13:08 +00:00
|
|
|
#include <wsutil/filesystem.h>
|
2015-02-20 00:05:49 +00:00
|
|
|
#include <wsutil/file_util.h>
|
2016-03-03 22:10:38 +00:00
|
|
|
#include <wsutil/privileges.h>
|
2015-02-20 00:05:49 +00:00
|
|
|
#include <wsutil/strnatcmp.h>
|
2021-06-18 18:21:42 +00:00
|
|
|
#include <wsutil/ws_assert.h>
|
2018-12-12 10:53:08 +00:00
|
|
|
|
|
|
|
|
#include <cli_main.h>
|
2017-09-26 14:04:56 +00:00
|
|
|
#include <version_info.h>
|
2013-07-16 01:16:50 +00:00
|
|
|
|
2016-03-02 14:13:08 +00:00
|
|
|
#ifdef HAVE_PLUGINS
|
|
|
|
|
#include <wsutil/plugins.h>
|
|
|
|
|
#endif
|
|
|
|
|
|
2017-04-08 19:45:19 +00:00
|
|
|
#include <wsutil/report_message.h>
|
2016-03-02 14:13:08 +00:00
|
|
|
|
2013-07-16 02:35:33 +00:00
|
|
|
#include <wiretap/merge.h>
|
2013-07-10 16:18:37 +00:00
|
|
|
|
2017-04-20 20:25:21 +00:00
|
|
|
#include "ui/failure_message.h"
|
|
|
|
|
|
2001-07-13 08:16:16 +00:00
|
|
|
/*
|
|
|
|
|
* Show the usage
|
2002-08-28 21:04:11 +00:00
|
|
|
*/
|
2001-07-13 08:16:16 +00:00
|
|
|
static void
|
2014-07-03 08:45:32 +00:00
|
|
|
print_usage(FILE *output)
|
2001-07-12 19:59:41 +00:00
|
|
|
{
|
2014-01-03 14:44:16 +00:00
|
|
|
fprintf(output, "\n");
|
|
|
|
|
fprintf(output, "Usage: mergecap [options] -w <outfile>|- <infile> [<infile> ...]\n");
|
|
|
|
|
fprintf(output, "\n");
|
|
|
|
|
fprintf(output, "Output:\n");
|
|
|
|
|
fprintf(output, " -a concatenate rather than merge files.\n");
|
|
|
|
|
fprintf(output, " default is to merge based on frame timestamps.\n");
|
|
|
|
|
fprintf(output, " -s <snaplen> truncate packets to <snaplen> bytes of data.\n");
|
|
|
|
|
fprintf(output, " -w <outfile>|- set the output filename to <outfile> or '-' for stdout.\n");
|
|
|
|
|
fprintf(output, " -F <capture type> set the output file type; default is pcapng.\n");
|
|
|
|
|
fprintf(output, " an empty \"-F\" option will list the file types.\n");
|
2015-08-16 16:37:11 +00:00
|
|
|
fprintf(output, " -I <IDB merge mode> set the merge mode for Interface Description Blocks; default is 'all'.\n");
|
|
|
|
|
fprintf(output, " an empty \"-I\" option will list the merge modes.\n");
|
2014-01-03 14:44:16 +00:00
|
|
|
fprintf(output, "\n");
|
|
|
|
|
fprintf(output, "Miscellaneous:\n");
|
|
|
|
|
fprintf(output, " -h display this help and exit.\n");
|
|
|
|
|
fprintf(output, " -v verbose output.\n");
|
2020-12-22 14:57:14 +00:00
|
|
|
fprintf(output, " -V print version information and exit.\n");
|
2006-01-10 23:06:05 +00:00
|
|
|
}
|
|
|
|
|
|
2014-07-03 08:54:13 +00:00
|
|
|
/*
|
|
|
|
|
* Report an error in command-line arguments.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
mergecap_cmdarg_err(const char *fmt, va_list ap)
|
|
|
|
|
{
|
|
|
|
|
fprintf(stderr, "mergecap: ");
|
|
|
|
|
vfprintf(stderr, fmt, ap);
|
|
|
|
|
fprintf(stderr, "\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Report additional information for an error in command-line arguments.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
mergecap_cmdarg_err_cont(const char *fmt, va_list ap)
|
|
|
|
|
{
|
|
|
|
|
vfprintf(stderr, fmt, ap);
|
|
|
|
|
fprintf(stderr, "\n");
|
|
|
|
|
}
|
|
|
|
|
|
2011-12-22 21:52:16 +00:00
|
|
|
static void
|
|
|
|
|
list_capture_types(void) {
|
wiretap: more work on file type/subtypes.
Provide a wiretap routine to get an array of all savable file
type/subtypes, sorted with pcap and pcapng at the top, followed by the
other types, sorted either by the name or the description.
Use that routine to list options for the -F flag for various commands
Rename wtap_get_savable_file_types_subtypes() to
wtap_get_savable_file_types_subtypes_for_file(), to indicate that it
provides an array of all file type/subtypes in which a given file can be
saved. Have it sort all types, other than the default type/subtype and,
if there is one, the "other" type (both of which are put at the top), by
the name or the description.
Don't allow wtap_register_file_type_subtypes() to override any existing
registrations; have them always register a new type. In that routine,
if there are any emply slots in the table, due to an entry being
unregistered, use it rather than allocating a new slot.
Don't allow unregistration of built-in types.
Rename the "dump open table" to the "file type/subtype table", as it has
entries for all types/subtypes, even if we can't write them.
Initialize that table in a routine that pre-allocates the GArray before
filling it with built-in types/subtypes, so it doesn't keep getting
reallocated.
Get rid of wtap_num_file_types_subtypes - it's just a copy of the size
of the GArray.
Don't have wtap_file_type_subtype_description() crash if handed an
file type/subtype that isn't a valid array index - just return NULL, as
we do with wtap_file_type_subtype_name().
In wtap_name_to_file_type_subtype(), don't use WTAP_FILE_TYPE_SUBTYPE_
names for the backwards-compatibility names - map those names to the
current names, and then look them up. This reduces the number of
uses of hardwired WTAP_FILE_TYPE_SUBTYPE_ values.
Clean up the type of wtap_module_count - it has no need to be a gulong.
Have built-in wiretap file handlers register names to be used for their
file type/subtypes, rather than building the table in init.lua.
Add a new Lua C function get_wtap_filetypes() to construct the
wtap_filetypes table, based on the registered names, and use it in
init.lua.
Add a #define WSLUA_INTERNAL_FUNCTION to register functions intended
only for internal use in init.lua, so they can be made available from
Lua without being documented.
Get rid of WTAP_NUM_FILE_TYPES_SUBTYPES - most code has no need to use
it, as it can just request arrays of types, and the space of
type/subtype codes can be sparse due to registration in any case, so
code has to be careful using it.
wtap_get_num_file_types_subtypes() is no longer used, so remove it. It
returns the number of elements in the file type/subtype array, which is
not necessarily the name of known file type/subtypes, as there may have
been some deregistered types, and those types do *not* get removed from
the array, they just get cleared so that they're available for future
allocation (we don't want the indices of any registered types to changes
if another type is deregistered, as those indicates are the type/subtype
values, so we can't shrink the array).
Clean up white space and remove some comments that shouldn't have been
added.
2021-02-17 06:24:47 +00:00
|
|
|
GArray *writable_type_subtypes;
|
2011-12-22 21:52:16 +00:00
|
|
|
|
|
|
|
|
fprintf(stderr, "mergecap: The available capture file types for the \"-F\" flag are:\n");
|
wiretap: more work on file type/subtypes.
Provide a wiretap routine to get an array of all savable file
type/subtypes, sorted with pcap and pcapng at the top, followed by the
other types, sorted either by the name or the description.
Use that routine to list options for the -F flag for various commands
Rename wtap_get_savable_file_types_subtypes() to
wtap_get_savable_file_types_subtypes_for_file(), to indicate that it
provides an array of all file type/subtypes in which a given file can be
saved. Have it sort all types, other than the default type/subtype and,
if there is one, the "other" type (both of which are put at the top), by
the name or the description.
Don't allow wtap_register_file_type_subtypes() to override any existing
registrations; have them always register a new type. In that routine,
if there are any emply slots in the table, due to an entry being
unregistered, use it rather than allocating a new slot.
Don't allow unregistration of built-in types.
Rename the "dump open table" to the "file type/subtype table", as it has
entries for all types/subtypes, even if we can't write them.
Initialize that table in a routine that pre-allocates the GArray before
filling it with built-in types/subtypes, so it doesn't keep getting
reallocated.
Get rid of wtap_num_file_types_subtypes - it's just a copy of the size
of the GArray.
Don't have wtap_file_type_subtype_description() crash if handed an
file type/subtype that isn't a valid array index - just return NULL, as
we do with wtap_file_type_subtype_name().
In wtap_name_to_file_type_subtype(), don't use WTAP_FILE_TYPE_SUBTYPE_
names for the backwards-compatibility names - map those names to the
current names, and then look them up. This reduces the number of
uses of hardwired WTAP_FILE_TYPE_SUBTYPE_ values.
Clean up the type of wtap_module_count - it has no need to be a gulong.
Have built-in wiretap file handlers register names to be used for their
file type/subtypes, rather than building the table in init.lua.
Add a new Lua C function get_wtap_filetypes() to construct the
wtap_filetypes table, based on the registered names, and use it in
init.lua.
Add a #define WSLUA_INTERNAL_FUNCTION to register functions intended
only for internal use in init.lua, so they can be made available from
Lua without being documented.
Get rid of WTAP_NUM_FILE_TYPES_SUBTYPES - most code has no need to use
it, as it can just request arrays of types, and the space of
type/subtype codes can be sparse due to registration in any case, so
code has to be careful using it.
wtap_get_num_file_types_subtypes() is no longer used, so remove it. It
returns the number of elements in the file type/subtype array, which is
not necessarily the name of known file type/subtypes, as there may have
been some deregistered types, and those types do *not* get removed from
the array, they just get cleared so that they're available for future
allocation (we don't want the indices of any registered types to changes
if another type is deregistered, as those indicates are the type/subtype
values, so we can't shrink the array).
Clean up white space and remove some comments that shouldn't have been
added.
2021-02-17 06:24:47 +00:00
|
|
|
writable_type_subtypes = wtap_get_writable_file_types_subtypes(FT_SORT_BY_NAME);
|
|
|
|
|
for (guint i = 0; i < writable_type_subtypes->len; i++) {
|
|
|
|
|
int ft = g_array_index(writable_type_subtypes, int, i);
|
|
|
|
|
fprintf(stderr, " %s - %s\n", wtap_file_type_subtype_name(ft),
|
|
|
|
|
wtap_file_type_subtype_description(ft));
|
2011-12-22 21:52:16 +00:00
|
|
|
}
|
wiretap: more work on file type/subtypes.
Provide a wiretap routine to get an array of all savable file
type/subtypes, sorted with pcap and pcapng at the top, followed by the
other types, sorted either by the name or the description.
Use that routine to list options for the -F flag for various commands
Rename wtap_get_savable_file_types_subtypes() to
wtap_get_savable_file_types_subtypes_for_file(), to indicate that it
provides an array of all file type/subtypes in which a given file can be
saved. Have it sort all types, other than the default type/subtype and,
if there is one, the "other" type (both of which are put at the top), by
the name or the description.
Don't allow wtap_register_file_type_subtypes() to override any existing
registrations; have them always register a new type. In that routine,
if there are any emply slots in the table, due to an entry being
unregistered, use it rather than allocating a new slot.
Don't allow unregistration of built-in types.
Rename the "dump open table" to the "file type/subtype table", as it has
entries for all types/subtypes, even if we can't write them.
Initialize that table in a routine that pre-allocates the GArray before
filling it with built-in types/subtypes, so it doesn't keep getting
reallocated.
Get rid of wtap_num_file_types_subtypes - it's just a copy of the size
of the GArray.
Don't have wtap_file_type_subtype_description() crash if handed an
file type/subtype that isn't a valid array index - just return NULL, as
we do with wtap_file_type_subtype_name().
In wtap_name_to_file_type_subtype(), don't use WTAP_FILE_TYPE_SUBTYPE_
names for the backwards-compatibility names - map those names to the
current names, and then look them up. This reduces the number of
uses of hardwired WTAP_FILE_TYPE_SUBTYPE_ values.
Clean up the type of wtap_module_count - it has no need to be a gulong.
Have built-in wiretap file handlers register names to be used for their
file type/subtypes, rather than building the table in init.lua.
Add a new Lua C function get_wtap_filetypes() to construct the
wtap_filetypes table, based on the registered names, and use it in
init.lua.
Add a #define WSLUA_INTERNAL_FUNCTION to register functions intended
only for internal use in init.lua, so they can be made available from
Lua without being documented.
Get rid of WTAP_NUM_FILE_TYPES_SUBTYPES - most code has no need to use
it, as it can just request arrays of types, and the space of
type/subtype codes can be sparse due to registration in any case, so
code has to be careful using it.
wtap_get_num_file_types_subtypes() is no longer used, so remove it. It
returns the number of elements in the file type/subtype array, which is
not necessarily the name of known file type/subtypes, as there may have
been some deregistered types, and those types do *not* get removed from
the array, they just get cleared so that they're available for future
allocation (we don't want the indices of any registered types to changes
if another type is deregistered, as those indicates are the type/subtype
values, so we can't shrink the array).
Clean up white space and remove some comments that shouldn't have been
added.
2021-02-17 06:24:47 +00:00
|
|
|
g_array_free(writable_type_subtypes, TRUE);
|
2006-01-10 23:06:05 +00:00
|
|
|
}
|
|
|
|
|
|
2011-12-22 21:52:16 +00:00
|
|
|
static void
|
2015-08-16 16:37:11 +00:00
|
|
|
list_idb_merge_modes(void) {
|
2013-09-06 21:57:04 +00:00
|
|
|
int i;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
fprintf(stderr, "mergecap: The available IDB merge modes for the \"-I\" flag are:\n");
|
|
|
|
|
for (i = 0; i < IDB_MERGE_MODE_MAX; i++) {
|
|
|
|
|
fprintf(stderr, " %s\n", merge_idb_merge_mode_to_string(i));
|
2013-09-06 21:57:04 +00:00
|
|
|
}
|
2001-07-12 19:59:41 +00:00
|
|
|
}
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
static gboolean
|
|
|
|
|
merge_callback(merge_event event, int num,
|
|
|
|
|
const merge_in_file_t in_files[], const guint in_file_count,
|
|
|
|
|
void *data _U_)
|
|
|
|
|
{
|
|
|
|
|
guint i;
|
|
|
|
|
|
|
|
|
|
switch (event) {
|
|
|
|
|
|
|
|
|
|
case MERGE_EVENT_INPUT_FILES_OPENED:
|
|
|
|
|
for (i = 0; i < in_file_count; i++) {
|
|
|
|
|
fprintf(stderr, "mergecap: %s is type %s.\n", in_files[i].filename,
|
2021-02-13 08:03:51 +00:00
|
|
|
wtap_file_type_subtype_description(wtap_file_type_subtype(in_files[i].wth)));
|
2015-08-16 16:37:11 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case MERGE_EVENT_FRAME_TYPE_SELECTED:
|
|
|
|
|
/* for this event, num = frame_type */
|
|
|
|
|
if (num == WTAP_ENCAP_PER_PACKET) {
|
|
|
|
|
/*
|
|
|
|
|
* Find out why we had to choose WTAP_ENCAP_PER_PACKET.
|
|
|
|
|
*/
|
|
|
|
|
int first_frame_type, this_frame_type;
|
|
|
|
|
|
|
|
|
|
first_frame_type = wtap_file_encap(in_files[0].wth);
|
|
|
|
|
for (i = 1; i < in_file_count; i++) {
|
|
|
|
|
this_frame_type = wtap_file_encap(in_files[i].wth);
|
|
|
|
|
if (first_frame_type != this_frame_type) {
|
|
|
|
|
fprintf(stderr, "mergecap: multiple frame encapsulation types detected\n");
|
|
|
|
|
fprintf(stderr, " defaulting to WTAP_ENCAP_PER_PACKET\n");
|
|
|
|
|
fprintf(stderr, " %s had type %s (%s)\n",
|
|
|
|
|
in_files[0].filename,
|
2019-01-09 21:21:10 +00:00
|
|
|
wtap_encap_description(first_frame_type),
|
|
|
|
|
wtap_encap_name(first_frame_type));
|
2015-08-16 16:37:11 +00:00
|
|
|
fprintf(stderr, " %s had type %s (%s)\n",
|
|
|
|
|
in_files[i].filename,
|
2019-01-09 21:21:10 +00:00
|
|
|
wtap_encap_description(this_frame_type),
|
|
|
|
|
wtap_encap_name(this_frame_type));
|
2015-08-16 16:37:11 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
fprintf(stderr, "mergecap: selected frame_type %s (%s)\n",
|
2019-01-09 21:21:10 +00:00
|
|
|
wtap_encap_description(num),
|
|
|
|
|
wtap_encap_name(num));
|
2015-08-16 16:37:11 +00:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case MERGE_EVENT_READY_TO_MERGE:
|
|
|
|
|
fprintf(stderr, "mergecap: ready to merge records\n");
|
|
|
|
|
break;
|
|
|
|
|
|
2018-02-05 20:55:00 +00:00
|
|
|
case MERGE_EVENT_RECORD_WAS_READ:
|
2015-08-16 16:37:11 +00:00
|
|
|
/* for this event, num = count */
|
|
|
|
|
fprintf(stderr, "Record: %d\n", num);
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case MERGE_EVENT_DONE:
|
|
|
|
|
fprintf(stderr, "mergecap: merging complete\n");
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* false = do not stop merging */
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
2018-12-12 10:53:08 +00:00
|
|
|
int
|
2018-12-26 17:10:12 +00:00
|
|
|
main(int argc, char *argv[])
|
2001-07-12 19:59:41 +00:00
|
|
|
{
|
2016-12-05 04:25:51 +00:00
|
|
|
char *init_progfile_dir_error;
|
2021-03-15 18:29:43 +00:00
|
|
|
static const struct report_message_routines mergecap_report_routines = {
|
|
|
|
|
failure_message,
|
|
|
|
|
failure_message,
|
|
|
|
|
open_failure_message,
|
|
|
|
|
read_failure_message,
|
|
|
|
|
write_failure_message,
|
|
|
|
|
cfile_open_failure_message,
|
|
|
|
|
cfile_dump_open_failure_message,
|
|
|
|
|
cfile_read_failure_message,
|
|
|
|
|
cfile_write_failure_message,
|
|
|
|
|
cfile_close_failure_message
|
|
|
|
|
};
|
2014-01-03 14:44:16 +00:00
|
|
|
int opt;
|
2014-07-03 04:50:54 +00:00
|
|
|
static const struct option long_options[] = {
|
2015-11-21 23:48:27 +00:00
|
|
|
{"help", no_argument, NULL, 'h'},
|
|
|
|
|
{"version", no_argument, NULL, 'V'},
|
2014-07-03 04:50:54 +00:00
|
|
|
{0, 0, 0, 0 }
|
|
|
|
|
};
|
2014-01-03 14:44:16 +00:00
|
|
|
gboolean do_append = FALSE;
|
|
|
|
|
gboolean verbose = FALSE;
|
|
|
|
|
int in_file_count = 0;
|
2016-09-11 20:48:35 +00:00
|
|
|
guint32 snaplen = 0;
|
2021-02-23 09:18:31 +00:00
|
|
|
int file_type = WTAP_FILE_TYPE_SUBTYPE_UNKNOWN;
|
2015-08-16 16:37:11 +00:00
|
|
|
int err = 0;
|
|
|
|
|
gchar *err_info = NULL;
|
2014-01-03 14:44:16 +00:00
|
|
|
int err_fileno;
|
2017-04-20 20:25:21 +00:00
|
|
|
guint32 err_framenum;
|
2014-01-03 14:44:16 +00:00
|
|
|
char *out_filename = NULL;
|
2017-02-04 15:26:34 +00:00
|
|
|
merge_result status = MERGE_OK;
|
2015-08-16 16:37:11 +00:00
|
|
|
idb_merge_mode mode = IDB_MERGE_MODE_MAX;
|
|
|
|
|
merge_progress_callback_t cb;
|
2004-06-18 10:01:59 +00:00
|
|
|
|
2014-07-03 08:54:13 +00:00
|
|
|
cmdarg_err_init(mergecap_cmdarg_err, mergecap_cmdarg_err_cont);
|
|
|
|
|
|
2011-01-06 23:28:58 +00:00
|
|
|
#ifdef _WIN32
|
2013-02-20 01:19:42 +00:00
|
|
|
create_app_running_mutex();
|
2011-01-06 23:28:58 +00:00
|
|
|
#endif /* _WIN32 */
|
|
|
|
|
|
2018-12-13 02:16:15 +00:00
|
|
|
/* Initialize the version information. */
|
|
|
|
|
ws_init_version_info("Mergecap (Wireshark)", NULL, NULL, NULL);
|
2014-07-03 08:45:32 +00:00
|
|
|
|
2016-03-03 21:35:40 +00:00
|
|
|
/*
|
|
|
|
|
* Get credential information for later use.
|
|
|
|
|
*/
|
|
|
|
|
init_process_policies();
|
2016-12-04 21:42:07 +00:00
|
|
|
|
2016-12-05 04:25:51 +00:00
|
|
|
/*
|
|
|
|
|
* Attempt to get the pathname of the directory containing the
|
|
|
|
|
* executable file.
|
|
|
|
|
*/
|
2018-05-05 07:19:09 +00:00
|
|
|
init_progfile_dir_error = init_progfile_dir(argv[0]);
|
2016-12-05 04:25:51 +00:00
|
|
|
if (init_progfile_dir_error != NULL) {
|
|
|
|
|
fprintf(stderr,
|
|
|
|
|
"mergecap: Can't get pathname of directory containing the mergecap program: %s.\n",
|
|
|
|
|
init_progfile_dir_error);
|
|
|
|
|
g_free(init_progfile_dir_error);
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-15 18:29:43 +00:00
|
|
|
init_report_message("mergecap", &mergecap_report_routines);
|
2016-03-02 14:13:08 +00:00
|
|
|
|
2018-01-09 08:55:37 +00:00
|
|
|
wtap_init(TRUE);
|
2016-03-02 14:13:08 +00:00
|
|
|
|
2001-07-12 19:59:41 +00:00
|
|
|
/* Process the options first */
|
2015-08-16 16:37:11 +00:00
|
|
|
while ((opt = getopt_long(argc, argv, "aF:hI:s:vVw:", long_options, NULL)) != -1) {
|
2001-07-12 19:59:41 +00:00
|
|
|
|
|
|
|
|
switch (opt) {
|
|
|
|
|
case 'a':
|
|
|
|
|
do_append = !do_append;
|
|
|
|
|
break;
|
2002-08-28 21:04:11 +00:00
|
|
|
|
2001-07-12 19:59:41 +00:00
|
|
|
case 'F':
|
2021-02-13 08:03:51 +00:00
|
|
|
file_type = wtap_name_to_file_type_subtype(optarg);
|
2004-10-27 23:28:37 +00:00
|
|
|
if (file_type < 0) {
|
2013-09-06 21:57:04 +00:00
|
|
|
fprintf(stderr, "mergecap: \"%s\" isn't a valid capture file type\n",
|
|
|
|
|
optarg);
|
2006-01-10 23:06:05 +00:00
|
|
|
list_capture_types();
|
2017-02-04 15:26:34 +00:00
|
|
|
status = MERGE_ERR_INVALID_OPTION;
|
|
|
|
|
goto clean_exit;
|
2001-07-12 19:59:41 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
|
2013-09-06 21:57:04 +00:00
|
|
|
case 'h':
|
2018-12-13 02:16:15 +00:00
|
|
|
show_help_header("Merge two or more capture files into one.");
|
2014-07-03 08:45:32 +00:00
|
|
|
print_usage(stdout);
|
2017-02-04 15:26:34 +00:00
|
|
|
goto clean_exit;
|
2001-07-12 19:59:41 +00:00
|
|
|
break;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
case 'I':
|
|
|
|
|
mode = merge_string_to_idb_merge_mode(optarg);
|
|
|
|
|
if (mode == IDB_MERGE_MODE_MAX) {
|
|
|
|
|
fprintf(stderr, "mergecap: \"%s\" isn't a valid IDB merge mode\n",
|
2013-09-06 21:57:04 +00:00
|
|
|
optarg);
|
2015-08-16 16:37:11 +00:00
|
|
|
list_idb_merge_modes();
|
2017-02-04 15:26:34 +00:00
|
|
|
status = MERGE_ERR_INVALID_OPTION;
|
|
|
|
|
goto clean_exit;
|
2013-09-06 21:57:04 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
case 's':
|
2016-09-11 20:48:35 +00:00
|
|
|
snaplen = get_nonzero_guint32(optarg, "snapshot length");
|
2015-08-16 16:37:11 +00:00
|
|
|
break;
|
|
|
|
|
|
2013-09-06 21:57:04 +00:00
|
|
|
case 'v':
|
|
|
|
|
verbose = TRUE;
|
|
|
|
|
break;
|
|
|
|
|
|
2014-06-20 18:48:27 +00:00
|
|
|
case 'V':
|
2018-12-13 02:16:15 +00:00
|
|
|
show_version();
|
2017-02-04 15:26:34 +00:00
|
|
|
goto clean_exit;
|
2014-06-20 18:48:27 +00:00
|
|
|
break;
|
|
|
|
|
|
2013-09-06 21:57:04 +00:00
|
|
|
case 'w':
|
|
|
|
|
out_filename = optarg;
|
2001-07-12 19:59:41 +00:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case '?': /* Bad options if GNU getopt */
|
2006-01-10 23:06:05 +00:00
|
|
|
switch(optopt) {
|
|
|
|
|
case'F':
|
|
|
|
|
list_capture_types();
|
|
|
|
|
break;
|
2015-08-16 16:37:11 +00:00
|
|
|
case'I':
|
|
|
|
|
list_idb_merge_modes();
|
2006-01-10 23:06:05 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
2014-07-03 08:45:32 +00:00
|
|
|
print_usage(stderr);
|
2006-01-10 23:06:05 +00:00
|
|
|
}
|
2017-02-04 15:26:34 +00:00
|
|
|
status = MERGE_ERR_INVALID_OPTION;
|
|
|
|
|
goto clean_exit;
|
2001-07-12 19:59:41 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-23 09:18:31 +00:00
|
|
|
/* Default to pcapng when writing. */
|
|
|
|
|
if (file_type == WTAP_FILE_TYPE_SUBTYPE_UNKNOWN)
|
|
|
|
|
file_type = wtap_pcapng_file_type_subtype();
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
cb.callback_func = merge_callback;
|
|
|
|
|
cb.data = NULL;
|
|
|
|
|
|
2001-07-13 08:16:16 +00:00
|
|
|
/* check for proper args; at a minimum, must have an output
|
|
|
|
|
* filename and one input file
|
|
|
|
|
*/
|
|
|
|
|
in_file_count = argc - optind;
|
2004-06-29 20:59:24 +00:00
|
|
|
if (!out_filename) {
|
2001-07-13 08:16:16 +00:00
|
|
|
fprintf(stderr, "mergecap: an output filename must be set with -w\n");
|
2004-01-18 02:12:59 +00:00
|
|
|
fprintf(stderr, " run with -h for help\n");
|
2017-02-04 15:26:34 +00:00
|
|
|
status = MERGE_ERR_INVALID_OPTION;
|
|
|
|
|
goto clean_exit;
|
2001-07-12 19:59:41 +00:00
|
|
|
}
|
2004-10-27 19:36:22 +00:00
|
|
|
if (in_file_count < 1) {
|
|
|
|
|
fprintf(stderr, "mergecap: No input files were specified\n");
|
2004-10-28 01:52:05 +00:00
|
|
|
return 1;
|
2004-10-27 19:36:22 +00:00
|
|
|
}
|
2001-07-12 19:59:41 +00:00
|
|
|
|
2021-02-23 09:18:31 +00:00
|
|
|
/*
|
|
|
|
|
* Setting IDB merge mode must use a file format that supports
|
|
|
|
|
* (and thus requires) interface ID and information blocks.
|
|
|
|
|
*/
|
|
|
|
|
if (mode != IDB_MERGE_MODE_MAX &&
|
|
|
|
|
wtap_file_type_subtype_supports_block(file_type, WTAP_BLOCK_IF_ID_AND_INFO) == BLOCK_NOT_SUPPORTED) {
|
|
|
|
|
fprintf(stderr, "The IDB merge mode can only be used with an output format that identifies interfaces\n");
|
2017-02-04 15:26:34 +00:00
|
|
|
status = MERGE_ERR_INVALID_OPTION;
|
|
|
|
|
goto clean_exit;
|
2004-10-27 23:28:37 +00:00
|
|
|
}
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
/* if they didn't set IDB merge mode, set it to our default */
|
|
|
|
|
if (mode == IDB_MERGE_MODE_MAX) {
|
|
|
|
|
mode = IDB_MERGE_MODE_ALL_SAME;
|
2004-10-27 23:28:37 +00:00
|
|
|
}
|
2002-08-28 21:04:11 +00:00
|
|
|
|
2001-07-13 08:16:16 +00:00
|
|
|
/* open the outfile */
|
2016-03-06 18:09:56 +00:00
|
|
|
if (strcmp(out_filename, "-") == 0) {
|
2016-12-04 01:57:34 +00:00
|
|
|
/* merge the files to the standard output */
|
|
|
|
|
status = merge_files_to_stdout(file_type,
|
|
|
|
|
(const char *const *) &argv[optind],
|
|
|
|
|
in_file_count, do_append, mode, snaplen,
|
2018-12-13 02:16:15 +00:00
|
|
|
get_appname_and_version(),
|
|
|
|
|
verbose ? &cb : NULL,
|
2017-04-20 20:25:21 +00:00
|
|
|
&err, &err_info, &err_fileno, &err_framenum);
|
2004-06-29 20:59:24 +00:00
|
|
|
} else {
|
2016-12-04 01:57:34 +00:00
|
|
|
/* merge the files to the outfile */
|
|
|
|
|
status = merge_files(out_filename, file_type,
|
|
|
|
|
(const char *const *) &argv[optind], in_file_count,
|
2018-12-13 02:16:15 +00:00
|
|
|
do_append, mode, snaplen, get_appname_and_version(),
|
|
|
|
|
verbose ? &cb : NULL,
|
2017-04-20 20:25:21 +00:00
|
|
|
&err, &err_info, &err_fileno, &err_framenum);
|
2008-05-22 15:46:27 +00:00
|
|
|
}
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
switch (status) {
|
|
|
|
|
case MERGE_OK:
|
2011-11-21 06:26:03 +00:00
|
|
|
break;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
case MERGE_USER_ABORTED:
|
|
|
|
|
/* we don't catch SIGINT/SIGTERM (yet?), so we couldn't have aborted */
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert_not_reached();
|
2004-10-29 00:36:52 +00:00
|
|
|
break;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
case MERGE_ERR_CANT_OPEN_INFILE:
|
2021-03-15 18:29:43 +00:00
|
|
|
cfile_open_failure_message(argv[optind + err_fileno], err, err_info);
|
2014-12-18 00:02:50 +00:00
|
|
|
break;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
case MERGE_ERR_CANT_OPEN_OUTFILE:
|
2021-03-15 18:29:43 +00:00
|
|
|
cfile_dump_open_failure_message(out_filename, err, err_info, file_type);
|
2017-04-20 20:25:21 +00:00
|
|
|
break;
|
|
|
|
|
|
|
|
|
|
case MERGE_ERR_CANT_READ_INFILE:
|
2021-03-15 18:29:43 +00:00
|
|
|
cfile_read_failure_message(argv[optind + err_fileno], err, err_info);
|
2014-12-18 00:02:50 +00:00
|
|
|
break;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
case MERGE_ERR_BAD_PHDR_INTERFACE_ID:
|
2017-04-20 20:25:21 +00:00
|
|
|
cmdarg_err("Record %u of \"%s\" has an interface ID that does not match any IDB in its file.",
|
|
|
|
|
err_framenum, argv[optind + err_fileno]);
|
|
|
|
|
break;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
case MERGE_ERR_CANT_WRITE_OUTFILE:
|
2021-03-15 18:29:43 +00:00
|
|
|
cfile_write_failure_message(argv[optind + err_fileno], out_filename,
|
|
|
|
|
err, err_info, err_framenum, file_type);
|
2017-04-20 20:25:21 +00:00
|
|
|
break;
|
|
|
|
|
|
2015-08-16 16:37:11 +00:00
|
|
|
case MERGE_ERR_CANT_CLOSE_OUTFILE:
|
2020-10-14 01:48:46 +00:00
|
|
|
cfile_close_failure_message(out_filename, err, err_info);
|
2017-04-20 20:25:21 +00:00
|
|
|
break;
|
|
|
|
|
|
When reporting "sorry, *this* packet can't be written to a file of that
type" when writing out a capture file (i.e., writing a
per-packet-encapsulation capture to a file type that supports it but
doesn't support one of the packet's encapsulations), report the packet
number and, when doing this in a merge operation, report the file from
which it came.
When reporting "sorry, that file can't be written to a file of that
type, period", show the file type rather than the input file link-layer
type that causes the problem. (We could show both. We could be
*really* ambitious and iterate through all possible file types and show
the ones that will or at least might work....)
file_write_error_message() is documented as handling only UNIX-style
errnos, and libwireshark should be usable without libwiretap, so leave
it up to its callers to handle Wiretap errors such as
WTAP_ERR_SHORT_WRITE.
Clean up indentation.
svn path=/trunk/; revision=39949
2011-11-19 20:18:01 +00:00
|
|
|
default:
|
2017-04-20 20:25:21 +00:00
|
|
|
cmdarg_err("Unknown merge_files error %d", status);
|
When reporting "sorry, *this* packet can't be written to a file of that
type" when writing out a capture file (i.e., writing a
per-packet-encapsulation capture to a file type that supports it but
doesn't support one of the packet's encapsulations), report the packet
number and, when doing this in a merge operation, report the file from
which it came.
When reporting "sorry, that file can't be written to a file of that
type, period", show the file type rather than the input file link-layer
type that causes the problem. (We could show both. We could be
*really* ambitious and iterate through all possible file types and show
the ones that will or at least might work....)
file_write_error_message() is documented as handling only UNIX-style
errnos, and libwireshark should be usable without libwiretap, so leave
it up to its callers to handle Wiretap errors such as
WTAP_ERR_SHORT_WRITE.
Clean up indentation.
svn path=/trunk/; revision=39949
2011-11-19 20:18:01 +00:00
|
|
|
break;
|
2004-10-28 01:06:11 +00:00
|
|
|
}
|
2001-07-13 08:16:16 +00:00
|
|
|
|
2017-02-04 15:26:34 +00:00
|
|
|
clean_exit:
|
|
|
|
|
wtap_cleanup();
|
2017-02-20 13:42:42 +00:00
|
|
|
free_progdirs();
|
2015-08-16 16:37:11 +00:00
|
|
|
return (status == MERGE_OK) ? 0 : 2;
|
2001-07-12 19:59:41 +00:00
|
|
|
}
|
2013-09-06 21:57:04 +00:00
|
|
|
|
|
|
|
|
/*
|
2019-07-26 18:43:17 +00:00
|
|
|
* Editor modelines - https://www.wireshark.org/tools/modelines.html
|
2013-09-06 21:57:04 +00:00
|
|
|
*
|
|
|
|
|
* Local variables:
|
|
|
|
|
* c-basic-offset: 2
|
2014-01-03 14:44:16 +00:00
|
|
|
* tab-width: 8
|
2013-09-06 21:57:04 +00:00
|
|
|
* indent-tabs-mode: nil
|
|
|
|
|
* End:
|
|
|
|
|
*
|
2014-01-03 14:44:16 +00:00
|
|
|
* vi: set shiftwidth=2 tabstop=8 expandtab:
|
|
|
|
|
* :indentSize=2:tabSize=8:noTabs=true:
|
2013-09-06 21:57:04 +00:00
|
|
|
*/
|