Wireshark

  • Riverbed Technology
  • WinPcap
the world's foremost network protocol analyzer
  • Wireshark
    • About
    • Download
    • Blog
  • Get Help
    • Ask a Question
    • FAQs
    • Documentation
    • Mailing Lists
    • Online Tools
    • Wiki
    • Bug Tracker
  • Develop
    • Get Involved
    • Developer's Guide
    • Browse the Code
    • Latest Builds

Wireshark-dev: Re: [Wireshark-dev] source code

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next


From: Guy Harris <guy@xxxxxxxxxxxx>
Date: Fri, 04 Apr 2008 02:22:03 -0700

Maria de Fatima Requena wrote:


Does anyone know where (which files) is the code for telling skinny packets apart
I.e., the code that recognizes that a given packet is a Skinny Client Control Protocol packet? 

That's dissect_skinny() in epan/dissectors/packet-skinny.c.


and for the capture of packets in general?
The capture code is in dumpcap.c. It's compiled into a program called dumpcap, along with some other source files; both Wireshark and TShark run that program to do capturing. (That way, if the code that does capturing has to run with privileges, Wireshark and TShark themselves, with their 1.5 million lines of dissector code, don't have to run with privileges, so if there's a vulnerability in them, the damage they can do is limited.)
  • Follow-Ups:
    • Re: [Wireshark-dev] source code
      • From: Maria de Fatima Requena
  • References:
    • [Wireshark-dev] source code
      • From: Maria de Fatima Requena
  • Prev by Date: Re: [Wireshark-dev] Share CRC32C code between MPA and iSCSI
  • Next by Date: Re: [Wireshark-dev] [Wireshark-commits] rev 24766: /trunk/epan/ /trunk/epan/: libwireshark.def
  • Previous by thread: [Wireshark-dev] source code
  • Next by thread: Re: [Wireshark-dev] source code
  • Index(es):
    • Date
    • Thread

Wireshark and the "fin" logo are registered trademarks of the Wireshark Foundation