2007-03-18 10:15:50

by Andy Green

[permalink] [raw]
Subject: [PATCH 0/2] Try #3 Radiotap on Monitor Mode interfaces for rx and tx

Hi folks -

This pair of patches change the Monitor Mode wireless interfaces to use radiotap
both for monitoring and for packet injection. The monitoring side is done by a patch
from Michael Wu. Tcpdump knows how to handle the result.

For injecting packets, the you issue a packet using libpcap or a SOCK_PACKET
socket down an interface to the wireless device that is in Monitor Mode. The packet
has a normal radiotap header prepended to the IEEE80211 header. The radiotap header
is variable length depending on what the user wants to specify, currently the
transmit rate, power and antenna can be specified using normal radiotap semantics.
Any other entries are skipped.

A usermode app packetspammer is available from here

http://penumbra.warmcat.com/_twk/tiki-index.php?page=packetspammer

which allows easy injection of these packets from the commandline. At the moment it
loops issuing packets at a variety of rates which can be seen from another
machine's monitor mode interface on the same channel. There are instructions for
build and using it on the page above.

Currently it has been tested for both rx and tx using zd1211rw-mac80211 and works
except for 1Mbps TX (54Mbps - 2Mbps works) and the rx radiotap rate is not shown in
tcpdump.

The patches should be based against wireless-dev.
--