Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: the-tcpdump-group/tcpdump
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: master
Choose a base ref
...
head repository: 7AC/tcpdump
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: master
Choose a head ref
Can’t automatically merge. Don’t worry, you can still create the pull request.
  • 3 commits
  • 1 file changed
  • 1 contributor

Commits on Nov 11, 2011

  1. Added -o <file_offset> option to start tcpdump resuming log rotation 

    from a given index
    7AC committed Nov 11, 2011
    Copy the full SHA
    9cbafc8 View commit details

Commits on Nov 15, 2011

  1. - Changed offset var to WFileIndex and option to -@ 

    - Added overflow check based on Wflag
    7AC committed Nov 15, 2011
    Copy the full SHA
    7690ba3 View commit details

Commits on Dec 8, 2011

  1. Added SIGUSR1 handling to dump context that can be parsed and fed to -@

    7AC committed Dec 8, 2011
    Copy the full SHA
    d7c925f View commit details
Showing with 70 additions and 11 deletions.
  1. +70 −11 tcpdump.c
81 changes: 70 additions & 11 deletions tcpdump.c
View file
Original file line number Diff line number Diff line change
@@ -69,6 +69,7 @@ extern int SIZE_BUF;
#ifndef WIN32
#include <sys/wait.h>
#include <sys/resource.h>
#include <sys/stat.h>
#include <pwd.h>
#include <grp.h>
#include <errno.h>
@@ -106,6 +107,7 @@ int32_t thiszone; /* seconds offset from gmt to local time */

/* Forwards */
static RETSIGTYPE cleanup(int);
static RETSIGTYPE save_state_and_cleanup(int);
static RETSIGTYPE child_cleanup(int);
static void usage(void) __attribute__((noreturn));
static void show_dlts_and_exit(const char *device, pcap_t *pd) __attribute__((noreturn));
@@ -345,6 +347,8 @@ lookup_ndo_printer(int type)
}

static pcap_t *pd;
static char file_name[FILENAME_MAX] = "";
static int file_index = 0;

static int supports_monitor_mode;

@@ -552,7 +556,6 @@ getWflagChars(int x)
return c;
}


static void
MakeFilename(char *buffer, char *orig_name, int cnt, int max_chars)
{
@@ -598,12 +601,24 @@ static int tcpdump_printf(netdissect_options *ndo _U_,
return ret;
}

static pcap_dumper_t *pcap_dump_open_and_save_ctx(pcap_t *p, const char *fname, const char* base_name, int count)
{
pcap_dumper_t* dumper = pcap_dump_open(p, fname);
if (fname && dumper) {
if (!file_name[0])
strncpy(file_name, base_name, FILENAME_MAX - 1);
file_index = count;
}
return dumper;
}

int
main(int argc, char **argv)
{
register int cnt, op, i;
bpf_u_int32 localnet, netmask;
register char *cp, *infile, *cmdbuf, *device, *RFileName, *WFileName;
int WFileIndex;
pcap_handler callback;
int type;
struct bpf_program fcode;
@@ -640,6 +655,7 @@ main(int argc, char **argv)
infile = NULL;
RFileName = NULL;
WFileName = NULL;
WFileIndex = 0;
if ((cp = strrchr(argv[0], '/')) != NULL)
program_name = cp + 1;
else
@@ -653,7 +669,7 @@ main(int argc, char **argv)
#endif

while (
(op = getopt(argc, argv, "aAb" B_FLAG "c:C:d" D_FLAG "eE:fF:G:hHi:" I_FLAG j_FLAG J_FLAG "KlLm:M:nNOpqr:Rs:StT:u" U_FLAG "vw:W:xXy:Yz:Z:")) != -1)
(op = getopt(argc, argv, "aAb" B_FLAG "c:C:d" D_FLAG "eE:fF:G:hHi:" I_FLAG j_FLAG J_FLAG "KlLm:M:nNOpqr:Rs:StT:u" U_FLAG "vw:W:xXy:Yz:Z:@:")) != -1)
switch (op) {

case 'a':
@@ -1007,6 +1023,10 @@ main(int argc, char **argv)
}
break;

case '@':
if (optarg)
WFileIndex = atoi(optarg);
break;
default:
usage();
/* NOTREACHED */
@@ -1253,6 +1273,7 @@ main(int argc, char **argv)
(void)setsignal(SIGPIPE, cleanup);
(void)setsignal(SIGTERM, cleanup);
(void)setsignal(SIGINT, cleanup);
(void)setsignal(SIGUSR1, save_state_and_cleanup);
#endif /* WIN32 */
#if defined(HAVE_FORK) || defined(HAVE_VFORK)
(void)setsignal(SIGCHLD, child_cleanup);
@@ -1297,13 +1318,17 @@ main(int argc, char **argv)
if (dumpinfo.CurrentFileName == NULL)
error("malloc of dumpinfo.CurrentFileName");

if (Wflag != 0)
WFileIndex = WFileIndex % Wflag;
/* We do not need numbering for dumpfiles if Cflag isn't set. */
if (Cflag != 0)
MakeFilename(dumpinfo.CurrentFileName, WFileName, 0, WflagChars);
else
MakeFilename(dumpinfo.CurrentFileName, WFileName, 0, 0);

p = pcap_dump_open(pd, dumpinfo.CurrentFileName);
if (Cflag != 0) {
MakeFilename(dumpinfo.CurrentFileName, WFileName, WFileIndex, WflagChars);
/* Offset the count too so rotated names are continuous */
Cflag_count = WFileIndex;
} else
MakeFilename(dumpinfo.CurrentFileName, WFileName, WFileIndex, 0);

p = pcap_dump_open_and_save_ctx(pd, dumpinfo.CurrentFileName, WFileName, WFileIndex);
if (p == NULL)
error("%s", pcap_geterr(pd));
if (Cflag != 0 || Gflag != 0) {
@@ -1465,6 +1490,40 @@ cleanup(int signo _U_)
#endif
}

/* Store the context of the current run to /var/tmp/tcpdump/<pid> */
static RETSIGTYPE
save_state_and_cleanup(int sgno _U_)
{
const char* dump_ctx_dir = "/var/tmp/tcpdump";
char dump_ctx_file_name[FILENAME_MAX] = "";
FILE* dump_ctx_file = NULL;
warning("Catching signal %d, attempting to save context", sgno);
if (!file_name || !file_name[0]) {
warning("No dump file found, skipping context save");
cleanup(sgno);
exit(0);
}
errno = 0;
if (mkdir(dump_ctx_dir, S_IRWXU|S_IRWXG|S_IRWXO) && errno != EEXIST) {
error("Unable to create %s (errno=%d)", dump_ctx_dir, errno);
cleanup(sgno);
exit(0);
}
if (sprintf(dump_ctx_file_name, "%s/%d", dump_ctx_dir, getpid()) <= 0) {
error("Failed to create context file name");
cleanup(sgno);
exit(0);
}
if (!(dump_ctx_file = fopen(dump_ctx_file_name, "w"))) {
error("Failed to open %s", dump_ctx_file_name);
cleanup(sgno);
exit(0);
}
fprintf(dump_ctx_file, "%s\n%d\n", file_name, file_index);
fclose(dump_ctx_file);
cleanup(sgno);
}

/*
On windows, we do not use a fork, so we do not care less about
waiting a child processes to die
@@ -1635,7 +1694,7 @@ dump_packet_and_trunc(u_char *user, const struct pcap_pkthdr *h, const u_char *s
else
MakeFilename(dump_info->CurrentFileName, dump_info->WFileName, 0, 0);

dump_info->p = pcap_dump_open(dump_info->pd, dump_info->CurrentFileName);
dump_info->p = pcap_dump_open_and_save_ctx(dump_info->pd, dump_info->CurrentFileName, dump_info->WFileName, 0);
if (dump_info->p == NULL)
error("%s", pcap_geterr(pd));
}
@@ -1669,7 +1728,7 @@ dump_packet_and_trunc(u_char *user, const struct pcap_pkthdr *h, const u_char *s
if (dump_info->CurrentFileName == NULL)
error("dump_packet_and_trunc: malloc");
MakeFilename(dump_info->CurrentFileName, dump_info->WFileName, Cflag_count, WflagChars);
dump_info->p = pcap_dump_open(dump_info->pd, dump_info->CurrentFileName);
dump_info->p = pcap_dump_open_and_save_ctx(dump_info->pd, dump_info->CurrentFileName, dump_info->WFileName, Cflag_count);
if (dump_info->p == NULL)
error("%s", pcap_geterr(pd));
}
@@ -1908,7 +1967,7 @@ usage(void)
(void)fprintf(stderr,
"\t\t[ -W filecount ] [ -y datalinktype ] [ -z command ]\n");
(void)fprintf(stderr,
"\t\t[ -Z user ] [ expression ]\n");
"\t\t[ -Z user ] [ -@ file_index ] [ expression ]\n");
exit(1);
}