| blob | 6b53f100100f78004880dab55ec426db0f4c5d6b |
1 /* util.c
2 * Utility routines
3 *
4 * $Id$
5 *
6 * Wireshark - Network traffic analyzer
7 * By Gerald Combs <gerald@wireshark.org>
8 * Copyright 1998 Gerald Combs
9 *
10 * This program is free software; you can redistribute it and/or
11 * modify it under the terms of the GNU General Public License
12 * as published by the Free Software Foundation; either version 2
13 * of the License, or (at your option) any later version.
14 *
15 * This program is distributed in the hope that it will be useful,
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 * GNU General Public License for more details.
19 *
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, write to the Free Software
22 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
23 */
27 #include <glib.h>
29 #include <stdlib.h>
30 #include <string.h>
31 #include <stdio.h>
32 #include <errno.h>
34 #ifdef HAVE_UNISTD_H
35 #include <unistd.h>
36 #endif
38 #ifdef HAVE_WINDOWS_H
39 #include <windows.h>
40 #endif
42 #include <epan/address.h>
43 #include <epan/addr_resolv.h>
44 #include <epan/strutil.h>
48 /*
49 * Collect command-line arguments as a string consisting of the arguments,
50 * separated by spaces.
51 */
54 {
59 /*
60 * Find out how long the string will be.
61 */
66 }
68 /*
69 * Allocate the buffer for the string.
70 */
73 /*
74 * Now construct the string.
75 */
80 i++;
84 }
86 }
88 /* Compute the difference between two seconds/microseconds time stamps. */
89 void
92 {
94 /* The seconds part of the first time is the same as the seconds
95 part of the second time, so if the microseconds part of the first
96 time is less than the microseconds part of the second time, the
97 first time is before the second time. The microseconds part of
98 the delta should just be the difference between the microseconds
99 part of the first time and the microseconds part of the second
100 time; don't adjust the seconds part of the delta, as it's OK if
101 the microseconds part is negative. */
106 /* The seconds part of the first time is less than the seconds part
107 of the second time, so the first time is before the second time.
109 Both the "seconds" and "microseconds" value of the delta
110 should have the same sign, so if the difference between the
111 microseconds values would be *positive*, subtract 1,000,000
112 from it, and add one to the seconds value. */
119 }
121 /* Oh, good, we're not caught in a chronosynclastic infindibulum. */
128 }
129 }
130 }
132 /* Remove any %<interface_name> from an IP address. */
145 }
147 /* Try to figure out if we're remotely connected, e.g. via ssh or
148 Terminal Server, and create a capture filter that matches aspects of the
149 connection. We match the following environment variables:
151 SSH_CONNECTION (ssh): <remote IP> <remote port> <local IP> <local port>
152 SSH_CLIENT (ssh): <remote IP> <remote port> <local port>
153 REMOTEHOST (tcsh, others?): <remote name>
154 DISPLAY (x11): [remote name]:<display num>
155 SESSIONNAME (terminal server): <remote name>
156 */
169 }
181 }
190 /* FreeBSD 7.0 sets REMOTEHOST to an empty string */
195 }
201 /*
202 * This mirrors what _X11TransConnectDisplay() does.
203 * Note that, on some systems, the hostname can
204 * begin with "/", which means that it's a pathname
205 * of a UNIX domain socket to connect to.
206 *
207 * The comments mirror those in _X11TransConnectDisplay(),
208 * too. :-)
209 *
210 * Display names may be of the following format:
211 *
212 * [protoco./] [hostname] : [:] displaynumber [.screennumber]
213 *
214 * A string with exactly two colons separating hostname
215 * from the display indicates a DECnet style name. Colons
216 * in the hostname may occur if an IPv6 numeric address
217 * is used as the hostname. An IPv6 numeric address may
218 * also end in a double colon, so three colons in a row
219 * indicates an IPv6 address ending in :: followed by
220 * :display. To make it easier for people to read, an
221 * IPv6 numeric address hostname may be surrounded by []
222 * in a similar fashion to the IPv6 numeric address URL
223 * syntax defined by IETF RFC 2732.
224 *
225 * If no hostname and no protocol is specified, the string
226 * is interpreted as the most efficient local connection
227 * to a server on the same machine. This is usually:
228 *
229 * o shared memory
230 * o local stream
231 * o UNIX domain socket
232 * o TCP to local host.
233 */
237 /*
238 * Step 0, find the protocol. This is delimited by
239 * the optional slash ('/').
240 */
242 ;
247 /* Yes */
250 /* Is it TCP? */
256 case no protocol was given */
258 /*
259 * Step 1, find the hostname. This is delimited either by
260 * one colon, or two colons in the case of DECnet (DECnet
261 * Phase V allows a single colon in the hostname). (See
262 * note above regarding IPv6 numeric addresses with
263 * triple colons or [] brackets.)
264 */
276 /* DECnet display specified */
289 /*
290 * No protocol was explicitly specified, so it
291 * could be a local connection over a transport
292 * that we won't see.
293 *
294 * Does the host name refer to the local host?
295 * If so, the connection would probably be a
296 * local connection.
297 *
298 * XXX - compare against our host name?
299 * _X11TransConnectDisplay() does.
300 */
305 }
307 /*
308 * A host name of "unix" (case-sensitive) also
309 * causes a local connection.
310 */
314 }
316 /*
317 * Does the host name begin with "/"? If so,
318 * it's presumed to be the pathname of a
319 * UNIX domain socket.
320 */
324 }
325 }
331 #ifdef _WIN32
333 /* We have a remote session: http://msdn.microsoft.com/en-us/library/aa380798%28VS.85%29.aspx */
337 }
339 }
341 /*
342 * Editor modelines
343 *
344 * Local Variables:
345 * c-basic-offset: 4
346 * tab-width: 8
347 * indent-tabs-mode: nil
348 * End:
349 *
350 * ex: set shiftwidth=4 tabstop=8 expandtab:
351 * :indentSize=4:tabSize=8:noTabs=true:
352 */