Open emaayan opened 9 months ago
@emaayan Thanks for your suggestion, we will consider to add it, but the priority is not high.
What is the pcap_rec_t type and how are you populating the flags field?
What is the pcap_rec_t type and how are you populating the flags field? That's my representation of how wireshark record would look (based on pcap format) alongside the wifi headers The flags portion is the tricky bit and i was hoping for some help from espressif because it involves taking data from the incoming wifi traffic and adapting it to wireshark and i don't know enough about esp to fill in all the details You can check out my project : https://github.com/emaayan/WifiSniffer/blob/main/Esp32Sniffer/components/wifi_sniffer/include/capture_lib.h
Answers checklist.
General issue report
the sniffer example in the esp-idf examples can be improved by adding a radio tap header that can also display various data from the rx_ctrl struct in wireshark for example: it can be added this way:
and then the method that actually writs the data can do this i don't enough about either the radio tap header files and and the rx_ctrl strcut to do a full mapping, but this is the gist of thing.s
the result would be something like this: the radiotap header v0, is the actuall data being written while the Radio information are fields wireshark generates based on the previous section.
additioanlly wireshark can accept connect directly to tcp sockets and read the same packet type so all esp32 needs to do is setup a tcp server that will start sending data as soon as it gets a socket wireshark can be configure using TCP@ with the port being 19000 as default so doing wireshark -k -i tcp@ would get wireshark to directly start reading capture packets from esp