New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Changes for better IEEE 1901-2010 compliance in sniffer mode #11
Conversation
Structures added for decoding frames according to delimiter type, and also for decoding beacon MPDU payload.
Functions added for decoding frames according to delimiter type, and also for decoding beacon MPDU payload. Various changes made to better describe fields and give values in both decimal and hex (and occasionally binary).
Only change is to initial message (so that it's possible to tell that the forked version of faifa is being run).
Also, could you make sure that you update Wireshark's dissector for HomePlugAV for these IEEE amendments? The dissector in Wireshark is a much better tool than faifa when it comes to displaying and parsing management frames. Thanks! |
I agree Wireshark is a better tool, but it lacks the facility for putting a QCA based Homeplug adapter into sniffer mode. If you can please point me at the Wireshark code, I'll take a look. |
The wireshark dissector is here: |
This patch modifies the homeplug-av dissector to better decode sniffer data according to the IEEE 1901-2010 standard. The dissector now decodes MPDU variant fields correctly based on delimiter type, and decodes beacon MPDU payloads. There are some variable-length fields it doesn't handle yet. This patch should have no effect on how non-sniffer-data packets are decoded. These changes are based on Andrew Margolis' pull request to faifa at ffainelli/faifa#11 Change-Id: Ia60ac7affa99a68b38f04ab66373ac715c761328 Reviewed-on: https://code.wireshark.org/review/19156 Petri-Dish: Michael Mann <mmann78@netscape.net> Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org> Reviewed-by: Anders Broman <a.broman58@gmail.com>
This patch modifies the homeplug-av dissector to better decode sniffer data according to the IEEE 1901-2010 standard. The dissector now decodes MPDU variant fields correctly based on delimiter type, and decodes beacon MPDU payloads. There are some variable-length fields it doesn't handle yet. This patch should have no effect on how non-sniffer-data packets are decoded. These changes are based on Andrew Margolis' pull request to faifa at ffainelli/faifa#11 Change-Id: Ia60ac7affa99a68b38f04ab66373ac715c761328 Reviewed-on: https://code.wireshark.org/review/19156 Petri-Dish: Michael Mann <mmann78@netscape.net> Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org> Reviewed-by: Anders Broman <a.broman58@gmail.com>
Wireshark is a much better tool for such dissection. |
This fork has been made in order to better decode HP-AV frames in sniffer mode according to the IEEE 1901-2010 standard.
Specifically, the modules homeplug_av.h and frame.c have had structures and functions added for decoding frames differentially according to delimiter type, and also for decoding beacon MPDU payload. Various changes made to better describe fields and give values in both decimal and hex (and occasionally binary).
Tested using Debian GNU/Linux 8 with a variety of Homeplug adapters having both QCA and Broadcmm chipsets. (Obviously, the Broadcom chipsets don't implement the Intellon/QCA proprietary sniffer mode, but the frames they emit can be successfully sniffed once an Intellon/QCA adapter is added to a Broadcmm Homeplug network).