<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.6000.16525" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT size=2>Does windump capture with your modified
wpcap.dll?</FONT></DIV>
<DIV><FONT size=2></FONT> </DIV>
<DIV><FONT size=2>I think that debugging your new version of wpcap.dll with a
simpler application like windump or any of the samples in the winpcap
developer's pack will ease your development.</FONT></DIV>
<DIV><FONT size=2></FONT> </DIV>
<DIV><FONT size=2>Also, I would use a debug version of wpcap.dll and attach a
debugger when dumpcap.exe crashes capturing. Finally, I would probably use
dumpcap.exe directly from the command line and debug from there (I don't know
which parameters need to be used with dumpcap, the folks on the wireshark-users
mailing list can certainly help you for that).</FONT></DIV>
<DIV><FONT size=2></FONT> </DIV>
<DIV><FONT size=2>Have a nice day</FONT></DIV>
<DIV><FONT size=2>GV</FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=2></FONT> </DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=varunax@gmail.com href="mailto:varunax@gmail.com">Varuna De Silva</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=winpcap-users@winpcap.org
href="mailto:winpcap-users@winpcap.org">winpcap-users@winpcap.org</A> ; <A
title=tcpdump-workers@lists.tcpdump.org
href="mailto:tcpdump-workers@lists.tcpdump.org">tcpdump-workers@lists.tcpdump.org</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Monday, October 08, 2007 5:17
AM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> [Winpcap-users] Problems With
Newly compiled Winpcap/Libpcap</DIV>
<DIV><BR></DIV><SPAN class=gmail_quote><BR></SPAN>Hello,<BR><BR>We have had
several problems when trying to integrate our device <BR>with wireshark on
windows. The following are the changes we made<BR>to the source tree of
Libpcap<BR><BR>We have done the following changes to
fad-win32<BR>int<BR>pcap_findalldevs(pcap_if_t **alldevsp, char
*errbuf)<BR>{<BR><BR>....<BR>if (ret != -1)
{<BR>
/*<BR> * We
haven't had any errors yet; do any platform-specific
<BR> *
operations to add
devices.<BR>
*/<BR> if
(pcap_platform_finddevs(&devlist, errbuf) <
0)<BR>
ret = -1;<BR> }<BR>.....<BR>This comes just before.<BR>if (ret ==
-1) { <BR> /*<BR>
* We had an error; free the list we've been
constructing.<BR>
*/<BR> if (devlist != NULL)
{<BR>
pcap_freealldevs(devlist);<BR>
devlist = NULL;<BR> }
<BR> }<BR><BR>Then we did the change to pcap-win32 as
following..<BR>We added a pacp_find_devs() function in to it. As
following<BR><BR>int<BR>pcap_platform_finddevs(pcap_if_t **alldevsp, char
*errbuf)<BR>{<BR> <BR>#ifdef HAVE_USB<BR>
if (muwis_platform_finddevs(alldevsp, errbuf) < 0)<BR>
return (-1);<BR>#endif /* HAVE_USB
*/<BR><BR> return (0);<BR>}<BR><BR>and in our pcap-muwis.c
file we have a function like
below<BR><BR>int<BR>muwis_platform_finddevs(pcap_if_t **devlistp, char
*errbuf)<BR>{<BR><BR> const char description[512]= "MUWIS";<BR>
char name[512]="muwis" ;<BR> int ret = 0;<BR> if
(pcap_add_if(devlistp, name, 0, description, errbuf) < 0){
<BR>
/*<BR> *
Failure.<BR>
*/<BR> ret =
-1;<BR> }<BR> return (ret);
<BR>}<BR><BR>and in the pacp_open_live() we added code to accept our device as
following<BR><BR>#ifdef HAVE_USB
<BR> if (strstr(device, "muwis")) {<BR>
return muwis_open_live(device, snaplen, promisc, to_ms,
ebuf);<BR> }<BR>#endif<BR><BR>This is just after, #ifdef
HAVE_REMOTE ..... #endif Block. <BR><BR>This muwis_open_live() just fills the
pcap_t structure and <BR>opens our device. <BR><BR>When we run wireshark with
our own wpcap.dll when our device is <BR>attached to the USB port, and when we
try to start our capture,<BR>through capture->interfaces, in windows we get
an error saying<BR>'dumpcap needs to be closed', and there after we cannot see
any <BR>device in the interfaces list. <BR><BR>What is this dumpcap ? Or why
this is the problem that we face? <BR>Please tell us of any
experiences?<BR><BR>As I found out dumpcap is a program to get the network
packets.<BR>But why does it crashes when I have set my device to be opened
<BR>in muwis_open_live() function. <BR><BR>Thanks <BR><SPAN
class=sg><BR>Varuna<BR><BR><BR><BR><BR><BR></SPAN>
<P>
<HR>
<P></P>_______________________________________________<BR>Winpcap-users
mailing
list<BR>Winpcap-users@winpcap.org<BR>https://www.winpcap.org/mailman/listinfo/winpcap-users<BR></BLOCKQUOTE></BODY></HTML>