sun microsystems Systems Architecture Committee _________________________________________________________________ Subject: Add Wireshark 0.99.5 into Solaris Submitted by: Bart Smaalders File: PSARC/2007/334/opinion.ms Date: June 13th, 2007 Committee: James D. Carlson, Kais Belgaied, Mark Carl- son, Glenn Skinner, Gary Winiger. Product Approval Committee: Solaris PAC solaris-pac-opinion@sun.com 1. Summary This project integrates Wireshark (the current name for the open source project better known as "ethereal") into Solaris. Wireshark provides network packet capture and display facilities that are, in general, substantially better than those provided by our native snoop(1M) utility. 2. Decision & Precedence Information This project is approved as specified in reference [1-9]. The project may be delivered in a Minor release of Solaris via the SFW consolidation. 3. Interfaces The project exports the following interfaces. ______________________________________________________________________ | Interfaces Exported | |________________________|_________________|_________________________| |Interface | Classification | Comments | |________________________|_________________|_________________________| |/usr/share/wireshark/ | Project Private| Internal configuration | |/usr/lib/libwireshark.* | Project Private| Internal library | |/usr/lib/libwiretap.* | Project Private| Internal library | |/usr/lib/wireshark/ | Project Private| Plugins | |/usr/sbin/editcap | Unstable | Binary location | |/usr/sbin/capinfos | Unstable | Binary location | |/usr/sbin/text2pcap | Unstable | Binary location | |________________________|_________________|_________________________| PSARC/2007/334 Copyright 2007 Sun Microsystems - 2 - ______________________________________________________________________ | Interfaces Exported | |________________________|_________________|_________________________| |Interface | Classification | Comments | |________________________|_________________|_________________________| |/usr/sbin/tshark | Unstable | Binary location | |/usr/sbin/wireshark | Unstable | Binary location | |/usr/sbin/mergecap | Unstable | Binary location | |/usr/sbin/dumpcap | Unstable | Binary location | |Command lines and output| Volatile | | |Legacy file formats | Committed | | |SUNWwireshark | Unstable | Main package | |SUNWwiresharkgui | Unstable | Graphical interface | |libpcap.a | Project Private| Internal static library| |________________________|_________________|_________________________| The project imports the following interfaces. ______________________________________________________________________ | Interfaces Imported | |________________________|________________|__________________________| |Interface | Classification| Comments | |________________________|________________|__________________________| |/usr/share/applications/| Committed | LSARC 2006/462 | |/usr/share/pixmaps/ | Committed | | |libXfixes.so.1 | Volatile | PSARC 2004/318, 2006/702| |libXrandr.so.2 | Volatile | PSARC 2004/187 | |libXrender.so.1 | Volatile | LSARC 2001/125 | |libatk-1.0.so.0 | Stable | LSARC 2006/202 | |libcairo.so.2 | Volatile | LSARC 2006/202 | |libexpat.so.0 | Volatile | LSARC 2007/378 | |libfontconfig.so.1 | Volatile | | |libfreetype.so.6 | Volatile | LSARC 2002/291 | |libgcrypt.so.11 | Volatile | LSARC 2006/202 | |libgdk-x11-2.0.so.0 | Stable | LSARC 2006/202 | |libgdk_pixbuf-2.0.so.0 | Stable | LSARC 2006/202 | |libglib-2.0.so.0 | Stable | LSARC 2006/202 | |libgmodule-2.0.so.0 | Stable | LSARC 2006/202 | |libgnutls.so.11 | Volatile | LSARC 2006/202 | |libgobject-2.0.so.0 | Stable | LSARC 2006/202 | |libgpg-error.so.0 | Volatile | LSARC 2006/202 | |libgtk-x11-2.0.so.0 | Stable | LSARC 2006/202 | |libnetsnmp.so.5 | Stable | LSARC 2003/103 | |libpango-1.0.so.0 | Stable | LSARC 2006/202 | |libpangocairo-1.0.so.0 | Stable | LSARC 2006/202 | |libpangoft2-1.0.so.0 | Stable | LSARC 2006/202 | |libpng12.so.0 | Volatile | LSARC 2006/202 | |libz.so.1 | Committed | PSARC 2006/537 | |________________________|________________|__________________________| PSARC/2007/334 Copyright 2007 Sun Microsystems - 3 - 4. Opinion 4.1. File Format Commitment Several ARC members asked about the supported file formats. After discussion with the submitter, we agreed that the list of supported formats can be volatile, but that the project has a commitment to read old formats. 4.2. Volatile Libraries During review, one member noted that libcrypto and GNU TLS will require contracts. However, subsequent updates from the project team have removed the libcrypto usage, and the project intends to integrate via the SFW consolidation along with GNU TLS. Based on this update, no contracts have been presented. 4.3. Rights Profiles One member asked about rights profiles required to make tshark and wireshark work on Solaris. The project team updated the materials to include rights profile entries for these two programs in the "Network Management" profile with the least privilege necessary (net_rawaccess). 4.4. Snoop Obsolescence The integration of wireshark effectively makes legacy Solaris obsolete, and turns it into a burden both for sup- port and for future networking projects that may be required to provide both snoop and wireshark enhancements. Accordingly, several ARC members asked about the project team's intended direction for snoop. After discussing this issue with the project team, the ARC members agreed that the resource allocation required to obsolete snoop and remove it from the system is an issue that needs to be addressed by management. This issue led to the advisory information listed below. 5. Minority Opinion(s) None. 6. Advisory Information The ARC advises Solaris management and the Solaris PAC to raise the priority of an effort to remove the legacy snoop utility from Solaris and OpenSolaris. The ARC members plan to direct and approve future projects with the assumption that snoop removal is the intended direction, but may need to revisit this issue (likely at substantial expense and PSARC/2007/334 Copyright 2007 Sun Microsystems - 4 - inconvenience to other project teams) if prompt action is not taken. 7. Appendices 7.1. Appendix A: Technical Changes Required None. 7.2. Appendix B: Technical Changes Advised None. 7.3. Appendix C: Reference Material Unless stated otherwise, path names are relative to the case directory PSARC/2007/334. 1. Wireshark project description File: wireshark2.txt 2. capinfos(1) File: man/capinfos.1 3. dumpcap(1) File: man/dumpcap.1 4. editcap(1) File: man/editcap.1 5. mergecap(1) File: man/mergecap.1 6. text2pcap(1) File: man/text2pcap.1 7. tshark(1) File: man/tshark.1 8. wireshark-filter(4) File: man/wireshark-filter.4 9. wireshark(1) File: man/wireshark.1 PSARC/2007/334 Copyright 2007 Sun Microsystems