Wireshark
the world's foremost network protocol analyzer
Wireshark-bugs: [Wireshark-bugs] [Bug 3168] New: New duplicate packet removal options for editcap
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Sat, 3 Jan 2009 03:51:30 -0800 (PST)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3168 Summary: New duplicate packet removal options for editcap Product: Wireshark Version: 1.1.x (Experimental) Platform: All OS/Version: All Status: NEW Severity: Enhancement Priority: Low Component: Extras AssignedTo: wireshark-bugs@xxxxxxxxxxxxx ReportedBy: jyoung@xxxxxxx Jim Young <jyoung@xxxxxxx> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #2615| |review_for_checkin? Flag| | Created an attachment (id=2615) --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=2615) Patch to add new duplicate packet removal options to editcap Build Information: Version 1.1.2 (SVN Rev 27145) Copyright 1998-2008 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. Compiled with GTK+ 2.14.6, with GLib 2.18.3, with WinPcap (version unknown), with libz 1.2.3, without POSIX capabilities, with libpcre 7.0, with SMI 0.4.8, with c-ares 1.6.0, with Lua 5.1, with GnuTLS 2.6.3, with Gcrypt 1.4.3, with MIT Kerberos, with GeoIP, with PortAudio V19-devel (built Dec 31 2008), with AirPcap. Running on Windows XP Service Pack 2, build 2600, with WinPcap version 4.0.2 (packet.dll version 4.0.0.1040), based on libpcap version 0.9.5, without AirPcap. Built using Microsoft Visual C++ 9.0 build 30729 Wireshark is Open Source Software released under the GNU General Public License. Check the man page and http://www.wireshark.org for more information. -- The attached patch provides editcap with several new duplicate packet removal options (-d, -w and -W). These new editcap options augment the current -d option by allowing the user to specify an alternate packet window depth (-D) or by allowing user to suppress duplicates based on the relative arrival time to existing packets (-w and -W). In addition the -v switch if used with any of the duplicate packet removal options willl cause the Packet number, Packet length and MD5 hash of each packet will be written to standard out. This report can be used in scripts to help identify identify duplicate packets across trace files. This patch updates two files: editcap.c doc/editcap.pod -- Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.
- Follow-Ups:
- [Wireshark-bugs] [Bug 3168] New duplicate packet removal options for editcap
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 3168] New duplicate packet removal options for editcap
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 3168] New duplicate packet removal options for editcap
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 3168] New duplicate packet removal options for editcap
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 3168] New duplicate packet removal options for editcap
- Prev by Date: [Wireshark-bugs] [Bug 3166] Support for GSM Um and LAPDm
- Next by Date: [Wireshark-bugs] [Bug 3166] Support for GSM Um and LAPDm
- Previous by thread: [Wireshark-bugs] [Bug 3167] restarting a live capture should clean the filter if the field is like "tcp.stream eq 2"
- Next by thread: [Wireshark-bugs] [Bug 3168] New duplicate packet removal options for editcap
- Index(es):