From patchwork Tue Apr 12 10:35:40 2022 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: Adolf Belka X-Patchwork-Id: 5505 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4Kd2F06RTvz3x1Y for ; Tue, 12 Apr 2022 10:35:48 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail02.haj.ipfire.org", Issuer "R3" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4Kd2F00hBbz5Y0; Tue, 12 Apr 2022 10:35:48 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4Kd2F00N8Nz2ydN; Tue, 12 Apr 2022 10:35:48 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4Kd2Dz3gF6z2xbS for ; Tue, 12 Apr 2022 10:35:47 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4Kd2Dz0G76z4V4; Tue, 12 Apr 2022 10:35:47 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1649759747; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=qwffExgs3EKe8SH8lw6j5u86Ez605Gu+jt7k9E8/IgU=; b=fo6vFWzUbep/0ClzmTcWfFLJHrLHkuvDPbKiw2+kNek2Z4bRxbJHsdWwP5wRcJ8kcBnFUN 4hk5tlgrkuwkD0AQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1649759747; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=qwffExgs3EKe8SH8lw6j5u86Ez605Gu+jt7k9E8/IgU=; b=XcABvdxYoS+9bOvlhiZAvoUGG3VfPryM7UibApN/SAAPd2p9nESP/8XF7MXnouq3LMVZPR ePfQVzT8hc7+PmE8Z6kOMGC3ABtGf1bZv4UmwlSzgTO1GWG+O5ltroe9nmTiDD8xIivNbo xWfTkw6allfXBtq+sy0Jwvkbf48Hnm5mJL1KCAJAVjEp2UnmNk3/8UTE2mpxVusCwdUwGU adDoST/vAkxwr3jcECNCgRTdsy3zvTFDlrmYRbXJMDanoPB68hAlMXmpHArmkvyY1I5aEr Jif7yqkyakGaLiY5XE0i4HhHZw6vk6HE/SF6vztVMm7HSdDHyNbwe7EyIKxQLA== From: Adolf Belka To: development@lists.ipfire.org Subject: [PATCH] tshark: Update to version 3.6.3 Date: Tue, 12 Apr 2022 12:35:40 +0200 Message-Id: <20220412103540.59474-1-adolf.belka@ipfire.org> MIME-Version: 1.0 X-BeenThere: development@lists.ipfire.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: IPFire development talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: development-bounces@lists.ipfire.org Sender: "Development" - Update from 3.4.7 to 3.6.3 - Update of rootfile - find-dependencies run due to sobump - nothing reported - Changelog - a range of changes including many bug fixes and several vulnerabilities Wireshark 3.6.3 Release Notes Bug Fixes • Fuzz job crash output: fuzz-2022-01-19-7399.pcap Issue 17894[1]. • TLS dissector incorrectly reports JA3 values Issue 17942[2]. • "Wiki Protocol page" in packet details menu is broken - wiki pages not migrated to GitLab? Issue 17944[3]. • Dissector bug, protocol PFCP display Flow Description IE value error in Additional Flow Description of PFD Management Request Message Issue 17951[4]. • Bluetooth: Fails to open Log file for SCO connection Issue 17964[5]. • Fuzz job crash output: fuzz-2022-03-07-10896.pcap Issue 17984[6]. • libwiretap: Save as ERF causes segmentation fault Issue 17989[7]. • HTTP server returning multiple early hints shows too many responses in "Follow HTTP Stream" Issue 18006[8]. New and Updated Features Updated Protocol Support CSN.1, HTTP, IEEE 802.11, NTLM SSP, PFCP, PKTLOG, SSDP, TLS, and USB HID New and Updated Capture File Support pcap and pcapng Wireshark 3.6.2 Release Notes Bug Fixes The following vulnerabilities have been fixed: • wnpa-sec-2022-01[1] RTMPT dissector infinite loop. Issue 17813[2]. • wnpa-sec-2022-02[3] Large loops in multiple dissectors. Issue 17829[4], Issue 17842[5], Issue 17847[6], Issue 17855[7], Issue 17891[8], Issue 17925[9], Issue 17926[10], Issue 17931[11], Issue 17932[12], Issue 17933[13]. • wnpa-sec-2022-03[14] PVFS dissector crash. Issue 17840[15]. • wnpa-sec-2022-04[16] CSN.1 dissector crash. Issue 17882[17]. • wnpa-sec-2022-05[18] CMS dissector crash. Issue 17935[19]. The following bugs have been fixed: • Support for GSM SMS TPDU in HTTP2 body Issue 17784[20]. • Wireshark 3.6.1 broke the ABI by removing ws_log_default_writer from libwsutil Issue 17822[21]. • Fedora RPM package build failing with RPATH of /usr/local/lib64 Issue 17830[22]. • macos-setup.sh: ftp.pcre.org no longer exists Issue 17834[23]. • nmap.org/npcap → npcap.com: domain/URL change Issue 17838[24]. • MPLS ECHO FEC stack change TLV not dissected correctly Issue 17868[25]. • Attempting to open a systemd journal export file segfaults Issue 17875[26]. • Dissector bug on 802.11ac packets Issue 17878[27]. • The Info column shows only one NGAP/S1AP packet of several packets inside an SCTP packet Issue 17886[28]. • Uninstalling Wireshark 3.6.1 on Windows 10 fails to remove the installation directory because it doesn’t remove the User’s Guide subdirectory and all its contents. Issue 17898[29]. • 3.6 doesn’t build without zlib Issue 17899[30]. • SIP Statistics no longer properly reporting method type accounting Issue 17904[31]. • Fuzz job crash output: fuzz-2022-01-26-6940.pcap Issue 17909[32]. • SCTP retransmission detection broken for the first data chunk of each association with relative TSN Issue 17917[33]. • “Show In Folder” doesn’t work correctly for filenames with spaces Issue 17927[34]. New and Updated Features Updated Protocol Support AMP, ASN.1 PER, ATN-ULCS, BGP, BP, CFLOW, CMS, CSN.1, GDSDB, GSM RP, GTP, HTTP3, IEEE 802.11 Radiotap, IPDC, ISAKMP, Kafka, MP2T, MPEG PES, MPEG SECT, MPLS ECHO, NGAP, NTLMSSP, OpenFlow 1.4, OpenFlow 1.5, P_MUL, PN-RT, PROXY, PTP, PVFS, RSL, RTMPT, rtnetlink, S1AP, SCTP, Signal PDU, SIP, TDS, USB, WAP, and ZigBee ZCL New and Updated Capture File Support BLF and libpcap Wireshark 3.6.1 Release Notes Bug Fixes The following vulnerabilities have been fixed: • wnpa-sec-2021-17[1] RTMPT dissector infinite loop. Issue 17745[2]. CVE-2021-4185[3]. • wnpa-sec-2021-18[4] BitTorrent DHT dissector infinite loop. Issue 17754[5]. CVE-2021-4184[6]. • wnpa-sec-2021-19[7] pcapng file parser crash. Issue 17755[8]. CVE-2021-4183[9]. • wnpa-sec-2021-20[10] RFC 7468 file parser infinite loop. Issue 17801[11]. CVE-2021-4182[12]. • wnpa-sec-2021-21[13] Sysdig Event dissector crash. CVE-2021-4181[14]. • wnpa-sec-2021-22[15] Kafka dissector infinite loop. Issue 17811[16]. The following bugs have been fixed: • Allow sub-second timestamps in hexdumps Issue 15562[17]. • GRPC: An unnecessary empty Protobuf tree item is displayed if the GRPC message body length is 0 Issue 17675[18]. • Can’t install "ChmodBPF.pkg" or "Add Wireshark to the system path.pkg" on M1 MacBook Air Monterey without Rosetta 2 Issue 17757[19]. • TECMP: LIN Payload is cut off by 1 byte Issue 17760[20]. • Wireshark crashes if a 64 bit field of type BASE_CUSTOM is applied as a column Issue 17762[21]. • Command line option "-o console.log.level" causes wireshark and tshark to exit on start Issue 17763[22]. • Setting WIRESHARK_LOG_LEVEL=debug breaks interface capture Issue 17764[23]. • Unable to build without tshark Issue 17766[24]. • IEEE 802.11 action frames are not getting parsed and always seen as malformed Issue 17767[25]. • IEC 60870-5-101 link address field is 1 byte, but should have configurable length of 0,1 or 2 bytes Issue 17775[26]. • dfilter: 'tcp.port not in {1}' crashes Wireshark Issue 17785[27]. New and Updated Features • The 'console.log.level' preference was removed in Wireshark 3.6.0. This release adds an '-o console.log.level:' backward-compatibilty option on the CLI that maps to the new logging sub-system. Note that this does not have bitmask semantics and does not correspond to any actual preference. It is just a transition mechanism for users that were relying on this CLI option and will be removed in the future. To see the new diagnostic output options consult the manpages or the output of '--help'. Updated Protocol Support ANSI A I/F, AT, BitTorrent DHT, FF, GRPC, IEC 101/104, IEEE 802.11, IEEE 802.11 Radiotap, IPsec, Kafka, QUIC, RTMPT, RTSP, SRVLOC, Sysdig Event, and TECMP New and Updated Capture File Support BLF and RFC 7468 Wireshark 3.6.0 Release Notes Many improvements have been made. See the “New and Updated Features” section below for more details. You might want to pay particular attention to the display filter syntax updates. New and Updated Features The following features are new (or have been significantly updated) since version 3.6.0rc3: • The macOS Intel packages now ship with Qt 5.15.3 and require macOS 10.13 or later. The following features are new (or have been significantly updated) since version 3.6.0rc2: • Display filter set elements must now be comma-separated. See below for more details. The following features are new (or have been significantly updated) since version 3.6.0rc1: • The display filter expression “a != b” now has the same meaning as “!(a == b)”. The following features are new (or have been significantly updated) since version 3.5.0: • Nothing of note. The following features are new (or have been significantly updated) since version 3.4.0: • Several changes have been made to the display filter syntax: • The expression “a != b” now always has the same meaning as “!(a == b)”. In particular this means filter expressions with multi-value fields like “ip.addr != 1.1.1.1” will work as expected (the result is the same as typing “ip.src != 1.1.1.1 and ip.dst != 1.1.1.1”). This avoids the contradiction (a == b and a != b) being true. • It is possible to use the syntax “a ~= b” or “a any_ne b” to recover the previous (inconsistent with "==") logic for not equal. • Literal strings can now be specified using raw string syntax, identical to raw strings in the Python programming language. This can be used to avoid the complexity of using two levels of character escapes with regular expressions. • Set elements must now be separated using a comma. A filter such as http.request.method in {"GET" "HEAD"} must be written as …​ in {"GET", "HEAD"}. Whitespace is not significant. The previous use of whitespace as separator is deprecated and will be removed in a future version. • Support for the syntax "a not in b" with the same meaning as "not a in b" has been added. • Packaging updates: • A macOS Arm 64 (Apple Silicon) package is now available. • The macOS Intel packages now ship with Qt 5.15.3 and require macOS 10.13 or later. • The Windows installers now ship with Npcap 1.55. • A 64-bit Windows PortableApps package is now available. • TCP conversations now support a completeness criteria, which facilitates the identification of TCP streams having any of opening or closing handshakes, a payload, in any combination. It can be accessed with the new tcp.completeness filter. • Protobuf fields that are not serialized on the wire or otherwise missing in capture files can now be displayed with default values by setting the new “add_default_value” preference. The default values might be explicitly declared in “proto2” files, or false for bools, first value for enums, zero for numeric types. • Wireshark now supports reading Event Tracing for Windows (ETW). A new extcap named ETW reader is created that now can open an etl file, convert all events in the file to DLT_ETW packets and write to a specified FIFO destination. Also, a new packet_etw dissector is created to dissect DLT_ETW packets so Wireshark can display the DLT_ETW packet header, its message and packet_etw dissector calls packet_mbim sub_dissector if its provider matches the MBIM provider GUID. • “Follow DCCP stream” feature to filter for and extract the contents of DCCP streams. • Wireshark now supports dissecting RTP packets with OPUS payloads. • Importing captures from text files based on regular expressions is now possible. By specifying a regex capturing a single packet including capturing groups for relevant fields a textfile can be converted to a libpcap capture file. Supported data encodings are plain-hexadecimal, -octal, -binary and base64. Also the timestamp format now allows the second-fractions to be placed anywhere in the timestamp and it will be stored with nanosecond instead of microsecond precision. • The RTP Player has been significatnly redesigned and improved. See Playing VoIP Calls[1] and RTP Player Window[2] in the User’s Guide for more details. • The RTP Player can play many streams in row. • The UI is more responsive. • The RTP Player maintains playlist and other tools can add and remove streams to and from it. • Every stream can be muted or routed to the left or right channel for replay. • The option to save audio has been moved from the RTP Analysis dialog to the RTP Player. The RTP Player also saves what was played, and it can save in multichannel .au or .wav. • The RTP Player is now accessible from the Telephony › RTP › RTP Player menu. • The VoIP dialogs (VoIP Calls, RTP Streams, RTP Analysis, RTP Player, SIP Flows) are non-modal and can stay opened on background. • The same tools are provided across all dialogs (Prepare Filter, Analyse, RTP Player …​) • The “Follow Stream” dialog is now able to follow SIP calls based on their Call-ID value. • The “Follow Stream” dialog’s YAML output format has been updated to add timestamps and peers information For more details see Following Protocol Streams[3] in the User’s Guide. • IP fragments between public IPv4 addresses are now reassembled even if they have different VLAN IDs. Reassembly of IP fragments where one endpoint is a private (RFC 1918 section 3) or link-local (RFC 3927) IPv4 address continues to take the VLAN ID into account, as those addresses can be reused. To revert to the previous behavior and not reassemble fragments with different VLAN IDs, turn on the “Enable stricter conversation tracking heuristics” top level protocol preference. • USB Link Layer reassembly has been added, which allows hardware captures to be analyzed at the same level as software captures. • TShark can now export TLS session keys with the --export-tls-session-keys option. • Wireshark participated in the Google Season of Docs 2020 and the User’s Guide has been extensively updated. • The “RTP Stream Analysis” dialog CSV export format was slightly changed. The first line of the export contains column titles as in other CSV exports. • Wireshark now supports the Turkish language. • The settings in the “Import from Hex Dump” dialog is now stored in a profile import_hexdump.json file. • Analyze › Reload Lua Plugins has been improved to properly support FileHandler. • The “RTP Stream Analysis” and “IAX2 Stream Analysis” dialogs now show correct calculation mean jitter calculations. • RTP streams are now created based on Skinny protocol messages in addition to other types of messages. • The “VoIP Calls Flow Sequence” window shows more information about various Skinny messages. • Initial support for building Wireshark on Windows using GCC and MinGW-w64 has been added. See README.msys2 in the sources for more information. New File Format Decoding Support Vector Informatik Binary Log File (BLF) New Protocol Support 5G Lawful Interception (5GLI), Bluetooth Link Manager Protocol (BT LMP), Bundle Protocol version 7 (BPv7), Bundle Protocol version 7 Security (BPSec), CBOR Object Signing and Encryption (COSE), E2 Application Protocol (E2AP), Event Tracing for Windows (ETW), EXtreme extra Eth Header (EXEH), High-Performance Connectivity Tracer (HiPerConTracer), ISO 10681, Kerberos SPAKE, Linux psample protocol, Local Interconnect Network (LIN), Microsoft Task Scheduler Service, O-RAN E2AP, O-RAN fronthaul UC-plane (O-RAN), Opus Interactive Audio Codec (OPUS), PDU Transport Protocol, R09.x (R09), RDP Dynamic Channel Protocol (DRDYNVC), RDP Graphic pipeline channel Protocol (EGFX), RDP Multi-transport (RDPMT), Real-Time Publish-Subscribe Virtual Transport (RTPS-VT), Real-Time Publish-Subscribe Wire Protocol (processed) (RTPS-PROC), Shared Memory Communications (SMC), Signal PDU, SparkplugB, State Synchronization Protocol (SSyncP), Tagged Image File Format (TIFF), TP-Link Smart Home Protocol, UAVCAN DSDL, UAVCAN/CAN, UDP Remote Desktop Protocol (RDPUDP), Van Jacobson PPP compression (VJC), World of Warcraft World (WOWW), and X2 xIRI payload (xIRI) Updated Protocol Support Too many protocols have been updated to list here. New and Updated Capture File Support Vector Informatik Binary Log File (BLF) Wireshark 3.4.9 Release Notes Bug Fixes • TShark PDML output embeds "proto" elements within other "proto" elements Issue 10588[1]. • Filter expressions comparing against single-octet hex strings where the hex digit string equals a protocol name don’t work Issue 12810[2]. • AMQP 0.9: dissector fails to handle Content-Body frame split across TCP packets Issue 14217[3]. • IEEE 802.15.4: Missing check on "PAN ID Present" bit of the Multipurpose Frame Control field Issue 17496[4]. • Wireshark ignored some character in filename when exporting SMB objects. Issue 17530[5]. • tshark -z credentials: assertion failed: (allocator→in_scope) Issue 17576[6]. • IS-IS Extended IP Reachability Prefix-SID not decoded properly Issue 17610[7]. • Error when reloading lua plugins with a capture file loaded via a custom lua file handler Issue 17615[8]. • Absolute time UTC field filters are constructed incorrectly, don’t match the packet Issue 17617[9]. • GUI freezes when clicking on large (non-capture) file in File chooser Issue 17620[10]. • Crash after selecting a different profile while capturing Issue 17622[11]. • BT-DHT reports malformed packets that are actually uTP on same connection Issue 17626[12]. Updated Protocol Support AMQP, Aruba IAP, BGP, BT-DHT, CoAP, DCERPC SPOOLSS, Diameter, EPL, GSM A-bis OML, GSM A-I/F COMMON, GSM SIM, IEEE 1905.1a, IEEE 802.15.4, IMAP, InfiniBand, ISIS LSP, ISObus VT, JPEG, MP2T, NORDIC_BLE, QUIC, RTCP, SDP, SMB, TWAMP-Control, USB HID, and VSS Monitoring New and Updated Capture File Support CAM Inspector, Ixia IxVeriWave, pcapng, and USBDump Wireshark 3.4.8 Release Notes Bug Fixes • Dissector bug reported for Bluetooth Cycling Power Measurement characteristic for extreme angles value Issue 17505[1]. • vcruntime140_1.dll deleted on Wireshark update/install Issue 17506[2]. • Raknet Addresses are incorrectly identified. Issue 17509[3]. • Editcap saving files as ethernet when specifying '-T ieee-802-11-*' Issue 17520[4]. • CoAP dissector confuses Content-Format with Accept Issue 17536[5]. Updated Protocol Support BT ATT, BT LE LL, CoAP, DLM3, GSM SIM, iLBC, and RakNet Signed-off-by: Adolf Belka Reviewed-by: Peter Müller --- config/rootfiles/packages/tshark | 185 +++++++++++++------------------ lfs/tshark | 6 +- 2 files changed, 77 insertions(+), 114 deletions(-) diff --git a/config/rootfiles/packages/tshark b/config/rootfiles/packages/tshark index f46d7ba01..937ddd3d6 100644 --- a/config/rootfiles/packages/tshark +++ b/config/rootfiles/packages/tshark @@ -44,6 +44,7 @@ usr/bin/tshark #usr/include/wireshark/epan/crc32-tvb.h #usr/include/wireshark/epan/crc6-tvb.h #usr/include/wireshark/epan/crc8-tvb.h +#usr/include/wireshark/epan/dccpservicecodes.h #usr/include/wireshark/epan/decode_as.h #usr/include/wireshark/epan/dfilter #usr/include/wireshark/epan/dfilter/dfilter.h @@ -51,6 +52,7 @@ usr/bin/tshark #usr/include/wireshark/epan/diam_dict.h #usr/include/wireshark/epan/disabled_protos.h #usr/include/wireshark/epan/dissectors +#usr/include/wireshark/epan/dissectors/cond_ace_token_enum.h #usr/include/wireshark/epan/dissectors/file-rbm.h #usr/include/wireshark/epan/dissectors/packet-6lowpan.h #usr/include/wireshark/epan/dissectors/packet-a21.h @@ -61,10 +63,12 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-adb_service.h #usr/include/wireshark/epan/dissectors/packet-afp.h #usr/include/wireshark/epan/dissectors/packet-alcap.h +#usr/include/wireshark/epan/dissectors/packet-amp.h #usr/include/wireshark/epan/dissectors/packet-ansi_a.h #usr/include/wireshark/epan/dissectors/packet-ansi_map.h #usr/include/wireshark/epan/dissectors/packet-ansi_tcap.h #usr/include/wireshark/epan/dissectors/packet-arp.h +#usr/include/wireshark/epan/dissectors/packet-asap+enrp-common.h #usr/include/wireshark/epan/dissectors/packet-atalk.h #usr/include/wireshark/epan/dissectors/packet-atm.h #usr/include/wireshark/epan/dissectors/packet-atn-ulcs.h @@ -75,12 +79,16 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-bgp.h #usr/include/wireshark/epan/dissectors/packet-bicc_mst.h #usr/include/wireshark/epan/dissectors/packet-bluetooth.h +#usr/include/wireshark/epan/dissectors/packet-bpsec.h +#usr/include/wireshark/epan/dissectors/packet-bpv6.h +#usr/include/wireshark/epan/dissectors/packet-bpv7.h #usr/include/wireshark/epan/dissectors/packet-bssap.h #usr/include/wireshark/epan/dissectors/packet-bssgp.h #usr/include/wireshark/epan/dissectors/packet-btatt.h #usr/include/wireshark/epan/dissectors/packet-btavctp.h #usr/include/wireshark/epan/dissectors/packet-btavdtp.h #usr/include/wireshark/epan/dissectors/packet-btavrcp.h +#usr/include/wireshark/epan/dissectors/packet-btbredr_rf.h #usr/include/wireshark/epan/dissectors/packet-bthci_acl.h #usr/include/wireshark/epan/dissectors/packet-bthci_cmd.h #usr/include/wireshark/epan/dissectors/packet-bthci_evt.h @@ -102,6 +110,7 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-cmp.h #usr/include/wireshark/epan/dissectors/packet-cms.h #usr/include/wireshark/epan/dissectors/packet-coap.h +#usr/include/wireshark/epan/dissectors/packet-cose.h #usr/include/wireshark/epan/dissectors/packet-credssp.h #usr/include/wireshark/epan/dissectors/packet-crmf.h #usr/include/wireshark/epan/dissectors/packet-csn1.h @@ -132,10 +141,10 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-disp.h #usr/include/wireshark/epan/dissectors/packet-dns.h #usr/include/wireshark/epan/dissectors/packet-docsis-tlv.h +#usr/include/wireshark/epan/dissectors/packet-doip.h #usr/include/wireshark/epan/dissectors/packet-dop.h #usr/include/wireshark/epan/dissectors/packet-dsp.h #usr/include/wireshark/epan/dissectors/packet-dtls.h -#usr/include/wireshark/epan/dissectors/packet-dtn.h #usr/include/wireshark/epan/dissectors/packet-dvbci.h #usr/include/wireshark/epan/dissectors/packet-e164.h #usr/include/wireshark/epan/dissectors/packet-e1ap.h @@ -162,6 +171,7 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-fcswils.h #usr/include/wireshark/epan/dissectors/packet-ff.h #usr/include/wireshark/epan/dissectors/packet-fix.h +#usr/include/wireshark/epan/dissectors/packet-flexray.h #usr/include/wireshark/epan/dissectors/packet-fmp.h #usr/include/wireshark/epan/dissectors/packet-frame.h #usr/include/wireshark/epan/dissectors/packet-ftam.h @@ -220,6 +230,8 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-isis-clv.h #usr/include/wireshark/epan/dissectors/packet-isis.h #usr/include/wireshark/epan/dissectors/packet-isl.h +#usr/include/wireshark/epan/dissectors/packet-iso10681.h +#usr/include/wireshark/epan/dissectors/packet-iso15765.h #usr/include/wireshark/epan/dissectors/packet-isup.h #usr/include/wireshark/epan/dissectors/packet-its.h #usr/include/wireshark/epan/dissectors/packet-iwarp-ddp-rdmap.h @@ -237,6 +249,7 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-lcsap.h #usr/include/wireshark/epan/dissectors/packet-ldap.h #usr/include/wireshark/epan/dissectors/packet-ldp.h +#usr/include/wireshark/epan/dissectors/packet-lin.h #usr/include/wireshark/epan/dissectors/packet-link16.h #usr/include/wireshark/epan/dissectors/packet-lisp.h #usr/include/wireshark/epan/dissectors/packet-llc.h @@ -274,6 +287,7 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-nisplus.h #usr/include/wireshark/epan/dissectors/packet-nlm.h #usr/include/wireshark/epan/dissectors/packet-nr-rrc.h +#usr/include/wireshark/epan/dissectors/packet-nrppa.h #usr/include/wireshark/epan/dissectors/packet-nsh.h #usr/include/wireshark/epan/dissectors/packet-ntlmssp.h #usr/include/wireshark/epan/dissectors/packet-ntp.h @@ -292,6 +306,7 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-pcnfsd.h #usr/include/wireshark/epan/dissectors/packet-pdcp-lte.h #usr/include/wireshark/epan/dissectors/packet-pdcp-nr.h +#usr/include/wireshark/epan/dissectors/packet-pdu-transport.h #usr/include/wireshark/epan/dissectors/packet-per.h #usr/include/wireshark/epan/dissectors/packet-pkcs1.h #usr/include/wireshark/epan/dissectors/packet-pkcs12.h @@ -334,7 +349,6 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-rtcp.h #usr/include/wireshark/epan/dissectors/packet-rtp-events.h #usr/include/wireshark/epan/dissectors/packet-rtp.h -#usr/include/wireshark/epan/dissectors/packet-rtps.h #usr/include/wireshark/epan/dissectors/packet-rtse.h #usr/include/wireshark/epan/dissectors/packet-rtsp.h #usr/include/wireshark/epan/dissectors/packet-rx.h @@ -367,6 +381,7 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-smrse.h #usr/include/wireshark/epan/dissectors/packet-snmp.h #usr/include/wireshark/epan/dissectors/packet-socketcan.h +#usr/include/wireshark/epan/dissectors/packet-someip.h #usr/include/wireshark/epan/dissectors/packet-spice.h #usr/include/wireshark/epan/dissectors/packet-sprt.h #usr/include/wireshark/epan/dissectors/packet-sscop.h @@ -380,6 +395,7 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-tacacs.h #usr/include/wireshark/epan/dissectors/packet-tcap.h #usr/include/wireshark/epan/dissectors/packet-tcp.h +#usr/include/wireshark/epan/dissectors/packet-tcpclv3.h #usr/include/wireshark/epan/dissectors/packet-tetra.h #usr/include/wireshark/epan/dissectors/packet-thrift.h #usr/include/wireshark/epan/dissectors/packet-tls-utils.h @@ -391,6 +407,7 @@ usr/bin/tshark #usr/include/wireshark/epan/dissectors/packet-tte.h #usr/include/wireshark/epan/dissectors/packet-ua.h #usr/include/wireshark/epan/dissectors/packet-uaudp.h +#usr/include/wireshark/epan/dissectors/packet-uavcan-dsdl.h #usr/include/wireshark/epan/dissectors/packet-ubertooth.h #usr/include/wireshark/epan/dissectors/packet-udp.h #usr/include/wireshark/epan/dissectors/packet-umts_fp.h @@ -478,6 +495,7 @@ usr/bin/tshark #usr/include/wireshark/epan/packet.h #usr/include/wireshark/epan/packet_info.h #usr/include/wireshark/epan/params.h +#usr/include/wireshark/epan/pci-ids.h #usr/include/wireshark/epan/plugin_if.h #usr/include/wireshark/epan/ppptypes.h #usr/include/wireshark/epan/prefs-int.h @@ -522,27 +540,12 @@ usr/bin/tshark #usr/include/wireshark/epan/uat.h #usr/include/wireshark/epan/unit_strings.h #usr/include/wireshark/epan/value_string.h -#usr/include/wireshark/epan/wmem -#usr/include/wireshark/epan/wmem/wmem.h -#usr/include/wireshark/epan/wmem/wmem_array.h -#usr/include/wireshark/epan/wmem/wmem_core.h -#usr/include/wireshark/epan/wmem/wmem_interval_tree.h -#usr/include/wireshark/epan/wmem/wmem_list.h -#usr/include/wireshark/epan/wmem/wmem_map.h -#usr/include/wireshark/epan/wmem/wmem_miscutl.h -#usr/include/wireshark/epan/wmem/wmem_queue.h -#usr/include/wireshark/epan/wmem/wmem_scopes.h -#usr/include/wireshark/epan/wmem/wmem_stack.h -#usr/include/wireshark/epan/wmem/wmem_strbuf.h -#usr/include/wireshark/epan/wmem/wmem_strutl.h -#usr/include/wireshark/epan/wmem/wmem_tree.h -#usr/include/wireshark/epan/wmem/wmem_user_cb.h +#usr/include/wireshark/epan/wmem_scopes.h +#usr/include/wireshark/epan/wscbor.h #usr/include/wireshark/epan/x264_prt_id.h #usr/include/wireshark/epan/xdlc.h #usr/include/wireshark/file.h #usr/include/wireshark/globals.h -#usr/include/wireshark/log.h -#usr/include/wireshark/version_info.h #usr/include/wireshark/wiretap #usr/include/wireshark/wiretap/file_wrappers.h #usr/include/wireshark/wiretap/merge.h @@ -550,13 +553,16 @@ usr/bin/tshark #usr/include/wireshark/wiretap/pcapng_module.h #usr/include/wireshark/wiretap/secrets-types.h #usr/include/wireshark/wiretap/wtap.h +#usr/include/wireshark/wiretap/wtap_modules.h #usr/include/wireshark/wiretap/wtap_opttypes.h #usr/include/wireshark/ws_attributes.h #usr/include/wireshark/ws_compiler_tests.h #usr/include/wireshark/ws_diag_control.h +#usr/include/wireshark/ws_log_defs.h #usr/include/wireshark/ws_symbol_export.h #usr/include/wireshark/ws_version.h #usr/include/wireshark/wsutil +#usr/include/wireshark/wsutil/802_11-utils.h #usr/include/wireshark/wsutil/adler32.h #usr/include/wireshark/wsutil/base32.h #usr/include/wireshark/wsutil/bits_count_ones.h @@ -580,9 +586,10 @@ usr/bin/tshark #usr/include/wireshark/wsutil/curve25519.h #usr/include/wireshark/wsutil/eax.h #usr/include/wireshark/wsutil/epochs.h +#usr/include/wireshark/wsutil/exported_pdu_tlvs.h #usr/include/wireshark/wsutil/filesystem.h -#usr/include/wireshark/wsutil/frequency-utils.h #usr/include/wireshark/wsutil/g711.h +#usr/include/wireshark/wsutil/glib-compat.h #usr/include/wireshark/wsutil/inet_addr.h #usr/include/wireshark/wsutil/inet_ipv4.h #usr/include/wireshark/wsutil/inet_ipv6.h @@ -595,7 +602,6 @@ usr/bin/tshark #usr/include/wireshark/wsutil/os_version_info.h #usr/include/wireshark/wsutil/pint.h #usr/include/wireshark/wsutil/please_report_bug.h -#usr/include/wireshark/wsutil/plugins.h #usr/include/wireshark/wsutil/pow2.h #usr/include/wireshark/wsutil/privileges.h #usr/include/wireshark/wsutil/processes.h @@ -608,25 +614,43 @@ usr/bin/tshark #usr/include/wireshark/wsutil/strtoi.h #usr/include/wireshark/wsutil/tempfile.h #usr/include/wireshark/wsutil/time_util.h +#usr/include/wireshark/wsutil/to_str.h #usr/include/wireshark/wsutil/type_util.h #usr/include/wireshark/wsutil/unicode-utils.h #usr/include/wireshark/wsutil/utf8_entities.h +#usr/include/wireshark/wsutil/wmem +#usr/include/wireshark/wsutil/wmem/wmem.h +#usr/include/wireshark/wsutil/wmem/wmem_array.h +#usr/include/wireshark/wsutil/wmem/wmem_core.h +#usr/include/wireshark/wsutil/wmem/wmem_interval_tree.h +#usr/include/wireshark/wsutil/wmem/wmem_list.h +#usr/include/wireshark/wsutil/wmem/wmem_map.h +#usr/include/wireshark/wsutil/wmem/wmem_miscutl.h +#usr/include/wireshark/wsutil/wmem/wmem_queue.h +#usr/include/wireshark/wsutil/wmem/wmem_stack.h +#usr/include/wireshark/wsutil/wmem/wmem_strbuf.h +#usr/include/wireshark/wsutil/wmem/wmem_strutl.h +#usr/include/wireshark/wsutil/wmem/wmem_tree.h +#usr/include/wireshark/wsutil/wmem/wmem_user_cb.h +#usr/include/wireshark/wsutil/ws_assert.h #usr/include/wireshark/wsutil/ws_cpuid.h +#usr/include/wireshark/wsutil/ws_getopt.h #usr/include/wireshark/wsutil/ws_mempbrk.h #usr/include/wireshark/wsutil/ws_mempbrk_int.h #usr/include/wireshark/wsutil/ws_pipe.h -#usr/include/wireshark/wsutil/ws_printf.h +#usr/include/wireshark/wsutil/ws_roundup.h #usr/include/wireshark/wsutil/wsjson.h +#usr/include/wireshark/wsutil/wslog.h #usr/include/wireshark/wsutil/xtea.h #usr/lib/libwireshark.so -usr/lib/libwireshark.so.14 -usr/lib/libwireshark.so.14.0.7 +usr/lib/libwireshark.so.15 +usr/lib/libwireshark.so.15.0.3 #usr/lib/libwiretap.so -usr/lib/libwiretap.so.11 -usr/lib/libwiretap.so.11.0.7 +usr/lib/libwiretap.so.12 +usr/lib/libwiretap.so.12.0.3 #usr/lib/libwsutil.so -usr/lib/libwsutil.so.12 -usr/lib/libwsutil.so.12.0.0 +usr/lib/libwsutil.so.13 +usr/lib/libwsutil.so.13.1.0 #usr/lib/pkgconfig/wireshark.pc #usr/lib/wireshark #usr/lib/wireshark/cmake @@ -648,81 +672,34 @@ usr/lib/wireshark/extcap/randpktdump usr/lib/wireshark/extcap/sshdump usr/lib/wireshark/extcap/udpdump #usr/lib/wireshark/plugins -#usr/lib/wireshark/plugins/3.4 -#usr/lib/wireshark/plugins/3.4/codecs -usr/lib/wireshark/plugins/3.4/codecs/g711.so -usr/lib/wireshark/plugins/3.4/codecs/g722.so -usr/lib/wireshark/plugins/3.4/codecs/g726.so -usr/lib/wireshark/plugins/3.4/codecs/l16mono.so -usr/lib/wireshark/plugins/3.4/codecs/opus_dec.so -#usr/lib/wireshark/plugins/3.4/epan -usr/lib/wireshark/plugins/3.4/epan/ethercat.so -usr/lib/wireshark/plugins/3.4/epan/gryphon.so -usr/lib/wireshark/plugins/3.4/epan/irda.so -usr/lib/wireshark/plugins/3.4/epan/mate.so -usr/lib/wireshark/plugins/3.4/epan/opcua.so -usr/lib/wireshark/plugins/3.4/epan/profinet.so -usr/lib/wireshark/plugins/3.4/epan/stats_tree.so -usr/lib/wireshark/plugins/3.4/epan/transum.so -usr/lib/wireshark/plugins/3.4/epan/unistim.so -usr/lib/wireshark/plugins/3.4/epan/wimax.so -usr/lib/wireshark/plugins/3.4/epan/wimaxasncp.so -usr/lib/wireshark/plugins/3.4/epan/wimaxmacphy.so -#usr/lib/wireshark/plugins/3.4/wiretap -usr/lib/wireshark/plugins/3.4/wiretap/usbdump.so -#usr/share/doc/wireshark -#usr/share/doc/wireshark/androiddump.html -#usr/share/doc/wireshark/capinfos.html -#usr/share/doc/wireshark/captype.html -#usr/share/doc/wireshark/ciscodump.html -#usr/share/doc/wireshark/dftest.html -#usr/share/doc/wireshark/dpauxmon.html -#usr/share/doc/wireshark/dumpcap.html -#usr/share/doc/wireshark/editcap.html -#usr/share/doc/wireshark/extcap.html -#usr/share/doc/wireshark/mergecap.html -#usr/share/doc/wireshark/randpkt.html -#usr/share/doc/wireshark/randpktdump.html -#usr/share/doc/wireshark/rawshark.html -#usr/share/doc/wireshark/reordercap.html -#usr/share/doc/wireshark/sshdump.html -#usr/share/doc/wireshark/text2pcap.html -#usr/share/doc/wireshark/tshark.html -#usr/share/doc/wireshark/udpdump.html -#usr/share/doc/wireshark/wireshark-filter.html -#usr/share/doc/wireshark/wireshark.html -#usr/share/man/man1/androiddump.1 -#usr/share/man/man1/capinfos.1 -#usr/share/man/man1/captype.1 -#usr/share/man/man1/ciscodump.1 -#usr/share/man/man1/dftest.1 -#usr/share/man/man1/dpauxmon.1 -#usr/share/man/man1/dumpcap.1 -#usr/share/man/man1/editcap.1 -#usr/share/man/man1/mergecap.1 -#usr/share/man/man1/randpkt.1 -#usr/share/man/man1/randpktdump.1 -#usr/share/man/man1/rawshark.1 -#usr/share/man/man1/reordercap.1 -#usr/share/man/man1/sshdump.1 -#usr/share/man/man1/text2pcap.1 -#usr/share/man/man1/tshark.1 -#usr/share/man/man1/udpdump.1 -#usr/share/man/man1/wireshark.1 -#usr/share/man/man4/extcap.4 -#usr/share/man/man4/wireshark-filter.4 +#usr/lib/wireshark/plugins/3.6 +#usr/lib/wireshark/plugins/3.6/codecs +usr/lib/wireshark/plugins/3.6/codecs/g711.so +usr/lib/wireshark/plugins/3.6/codecs/g722.so +usr/lib/wireshark/plugins/3.6/codecs/g726.so +usr/lib/wireshark/plugins/3.6/codecs/l16mono.so +usr/lib/wireshark/plugins/3.6/codecs/opus_dec.so +#usr/lib/wireshark/plugins/3.6/epan +usr/lib/wireshark/plugins/3.6/epan/ethercat.so +usr/lib/wireshark/plugins/3.6/epan/gryphon.so +usr/lib/wireshark/plugins/3.6/epan/irda.so +usr/lib/wireshark/plugins/3.6/epan/mate.so +usr/lib/wireshark/plugins/3.6/epan/opcua.so +usr/lib/wireshark/plugins/3.6/epan/profinet.so +usr/lib/wireshark/plugins/3.6/epan/stats_tree.so +usr/lib/wireshark/plugins/3.6/epan/transum.so +usr/lib/wireshark/plugins/3.6/epan/unistim.so +usr/lib/wireshark/plugins/3.6/epan/wimax.so +usr/lib/wireshark/plugins/3.6/epan/wimaxasncp.so +usr/lib/wireshark/plugins/3.6/epan/wimaxmacphy.so +#usr/lib/wireshark/plugins/3.6/wiretap +usr/lib/wireshark/plugins/3.6/wiretap/usbdump.so #usr/share/wireshark -#usr/share/wireshark/AUTHORS-SHORT #usr/share/wireshark/COPYING -#usr/share/wireshark/androiddump.html -#usr/share/wireshark/capinfos.html -#usr/share/wireshark/captype.html usr/share/wireshark/cfilters -#usr/share/wireshark/ciscodump.html usr/share/wireshark/colorfilters #usr/share/wireshark/dfilter_macros usr/share/wireshark/dfilters -#usr/share/wireshark/dftest.html #usr/share/wireshark/diameter usr/share/wireshark/diameter/AlcatelLucent.xml usr/share/wireshark/diameter/Cisco.xml @@ -768,13 +745,9 @@ usr/share/wireshark/dtds/smil.dtd usr/share/wireshark/dtds/watcherinfo.dtd usr/share/wireshark/dtds/xcap-caps.dtd usr/share/wireshark/dtds/xcap-error.dtd -#usr/share/wireshark/dumpcap.html -#usr/share/wireshark/editcap.html usr/share/wireshark/enterprises.tsv -#usr/share/wireshark/extcap.html #usr/share/wireshark/ipmap.html #usr/share/wireshark/manuf -#usr/share/wireshark/mergecap.html #usr/share/wireshark/pdml2html.xsl #usr/share/wireshark/profiles #usr/share/wireshark/profiles/Bluetooth @@ -996,22 +969,12 @@ usr/share/wireshark/radius/dictionary.yubico usr/share/wireshark/radius/dictionary.zeus usr/share/wireshark/radius/dictionary.zte usr/share/wireshark/radius/dictionary.zyxel -#usr/share/wireshark/randpkt.html -#usr/share/wireshark/randpktdump.html -#usr/share/wireshark/rawshark.html -#usr/share/wireshark/reordercap.html usr/share/wireshark/services usr/share/wireshark/smi_modules -#usr/share/wireshark/sshdump.html -#usr/share/wireshark/text2pcap.html #usr/share/wireshark/tpncp usr/share/wireshark/tpncp/tpncp.dat -#usr/share/wireshark/tshark.html -#usr/share/wireshark/udpdump.html #usr/share/wireshark/wimaxasncp usr/share/wireshark/wimaxasncp/dictionary.dtd usr/share/wireshark/wimaxasncp/dictionary.xml -#usr/share/wireshark/wireshark-filter.html -#usr/share/wireshark/wireshark.html usr/share/wireshark/wka usr/share/wireshark/ws.css diff --git a/lfs/tshark b/lfs/tshark index be732c97e..eb89f7474 100644 --- a/lfs/tshark +++ b/lfs/tshark @@ -26,7 +26,7 @@ include Config SUMMARY = A Network Traffic Analyser -VER = 3.4.7 +VER = 3.6.3 THISAPP = wireshark-$(VER) DL_FILE = $(THISAPP).tar.xz @@ -35,7 +35,7 @@ DIR_APP = $(DIR_SRC)/$(THISAPP) TARGET = $(DIR_INFO)/$(THISAPP) PROG = tshark DEPS = krb5 c-ares -PAK_VER = 11 +PAK_VER = 12 SERVICES = @@ -47,7 +47,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_BLAKE2 = 0a6112ed667739935417350660e31d64747cb81295db058e0a27c38387b2ed2b9806f8d61925c262d531fb96d87e230d1cd5d511ae0bdba973373835bf5d7bc5 +$(DL_FILE)_BLAKE2 = 3b636867d946f0cf748eb719874e815c919ee9cedd21a7e9034d54b4cb87ae4a09ec02a199e1ec8051e421fe2929983d659f340ccfd12ab35e1ecd52000964fd install : $(TARGET)