blackfoundry-pcap 0.1

data/lib/pcaplet.rb

@@ -0,0 +1,113 @@
+require 'pcap'
+require 'getopts'
+
+def pcaplet_usage()
+  $stderr.print <<END
+Usage: #{File.basename $0} [ -dnv ] [ -i interface | -r file ]
+       #{' ' * File.basename($0).length} [ -c count ] [ -s snaplen ] [ filter ]
+Options:
+  -n  do not convert address to name
+  -d  debug mode
+  -v  verbose mode
+END
+end
+
+module Pcap
+  class Pcaplet
+    def usage(status, msg = nil)
+      $stderr.puts msg if msg
+      pcaplet_usage
+      exit(status)
+    end
+
+    def initialize(args = nil)
+      if args
+	ARGV[0,0] = args.split(/\s+/)
+      end
+      usage(1) unless getopts("dnv", "i:", "r:", "c:-1", "s:68")
+      $DEBUG   |= $OPT_d
+      $VERBOSE |= $OPT_v
+
+      @device = $OPT_i
+      @rfile = $OPT_r
+      Pcap.convert = !$OPT_n
+      @count   = $OPT_c.to_i
+      @snaplen = $OPT_s.to_i
+      @filter = ARGV.join(' ')
+
+      # check option consistency
+      usage(1) if @device && @rfile
+      if !@device and !@rfile
+        @device = Pcap.lookupdev
+      end
+
+      # open
+      begin
+	if @device
+	  @capture = Capture.open_live(@device, @snaplen)
+	elsif @rfile
+	  if @rfile !~ /\.gz$/
+	    @capture = Capture.open_offline(@rfile)
+	  else
+	    $stdin = IO.popen("gzip -dc < #@rfile", 'r')
+	    @capture = Capture.open_offline('-')
+	  end
+	end
+	@capture.setfilter(@filter)
+      rescue PcapError, ArgumentError
+	$stdout.flush
+	$stderr.puts $!
+	exit(1)
+      end
+    end
+
+    attr('capture')
+
+    def add_filter(f)
+      if @filter == nil || @filter =~ /^\s*$/  # if empty
+	@filter = f
+      else
+	f = f.source if f.is_a? Filter
+	@filter = "( #{@filter} ) and ( #{f} )"
+      end
+      @capture.setfilter(@filter)
+    end
+
+    def each_packet(&block)
+      begin
+	duplicated = (RUBY_PLATFORM =~ /linux/ && @device == "lo")
+        unless duplicated
+          @capture.loop(@count, &block)
+        else
+          flip = true
+          @capture.loop(@count) do |pkt|
+            flip = (! flip)
+            next if flip
+            block.call pkt
+          end
+        end
+      rescue Interrupt
+        $stdout.flush
+        $stderr.puts("Interrupted.")
+        $stderr.puts $@.join("\n\t") if $DEBUG
+      ensure
+	# print statistics if live
+	if @device
+	  stat = @capture.stats
+	  if stat
+	    $stderr.print("#{stat.recv} packets received by filter\n");
+	    $stderr.print("#{stat.drop} packets dropped by kernel\n");
+	  end
+	end
+      end
+    end
+
+    alias each each_packet
+
+    def close
+      @capture.close
+    end
+  end
+end
+
+Pcaplet = Pcap::Pcaplet

metadata

@@ -0,0 +1,79 @@
+--- !ruby/object:Gem::Specification 
+name: blackfoundry-pcap
+version: !ruby/object:Gem::Version 
+  hash: 9
+  prerelease: 
+  segments: 
+  - 0
+  - 1
+  version: "0.1"
+platform: ruby
+authors: 
+- David Turnbull
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-05-06 00:00:00 Z
+dependencies: []
+
+description: "    Some extensions to the pcap library.\n"
+email: david@blackfoundry.com
+executables: []
+
+extensions: 
+- ext/extconf.rb
+extra_rdoc_files: 
+- ChangeLog
+- README
+- README.ja
+files: 
+- Rakefile
+- ext/Pcap.c
+- ext/extconf.rb
+- ext/icmp_packet.c
+- ext/ip_packet.c
+- ext/packet.c
+- ext/ruby_pcap.h
+- ext/tcp_packet.c
+- ext/udp_packet.c
+- lib/pcap_misc.rb
+- lib/pcaplet.rb
+- ChangeLog
+- README
+- README.ja
+homepage: 
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.7.2
+signing_key: 
+specification_version: 3
+summary: extensions to ruby-pcap
+test_files: []
+