+1 for independence from libpcap. Libpcap team does not approve
anything that is not protocol, so anything like events/logs/file
format is a problem.
I am agree, there is a great lag in communication in libpcap (but
sometimes new DLT can be add immediately)
DLT_ is for .pcap files, I am do not know how about pcap-ng. What
about using UserDLT or Exported/UpperPDU?
Or maybe is solution extcap + wiretap (WTAP_ENCAP_ and WTAP_FILE_TYPE_SUBTYPE_)?
On 26 May 2014 16:45, Dmitry Bazhenov <dima_b@xxxxxxxxxxxxxxx> wrote:
> Hello, all,
>
> Recently, the tcpdump-workers mailing list has stopped working for me.
> None of my replies posted into the list over the last week have got to the
> subscribers.
> None of my mails sent directly to the person who previously interacted with
> me have been answered.
>
> This makes the situation around the DLT_ value reservation and my patch for
> the IPMI-Trace dissector hanged in air.
>
> And I wonder why is it needed requesting for DLT_/LINKTYPE_ values from PCAP
> library maintainers for captures which are intended only to be analyzed in
> Wireshark/tshark?
>
> Is there a chance that for that kind of captures there will be a separate
> Wireshark format which does not do anything with libPCAP?
> Or probably there is already such format and I can skip the DLT_ value
> reservation?
>
> Regards,
> Dmitry
> ___________________________________________________________________________
> Sent via: Wireshark-dev mailing list <wireshark-dev@xxxxxxxxxxxxx>
> Archives: http://www.wireshark.org/lists/wireshark-dev
> Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
> mailto:wireshark-dev-request@xxxxxxxxxxxxx?subject=unsubscribe
--
Pozdrawiam / Best regards
-------------------------------------------------------------------------------------------------------------
Michał Łabędzki, Software Engineer
Tieto Corporation
Product Development Services
http://www.tieto.com / http://www.tieto.pl
---
ASCII: Michal Labedzki
location: Swobodna 1 Street, 50-088 Wrocław, Poland
room: 5.01 (desk next to 5.08)
---
Please note: The information contained in this message may be legally
privileged and confidential and protected from disclosure. If the
reader of this message is not the intended recipient, you are hereby
notified that any unauthorised use, distribution or copying of this
communication is strictly prohibited. If you have received this
communication in error, please notify us immediately by replying to
the message and deleting it from your computer. Thank You.
---
Please consider the environment before printing this e-mail.
---
Tieto Poland spółka z ograniczoną odpowiedzialnością z siedzibą w
Szczecinie, ul. Malczewskiego 26. Zarejestrowana w Sądzie Rejonowym
Szczecin-Centrum w Szczecinie, XIII Wydział Gospodarczy Krajowego
Rejestru Sądowego pod numerem 0000124858. NIP: 8542085557. REGON:
812023656. Kapitał zakładowy: 4 271500 PLN
