snoop contains few problems with accessing uninitialized data
Code analysis from Studio 12.3 shows several problems in snoop code:
cap_open_read() does not initialized device_mac_type
compare_value_zone() was mismerged during previous putback
ipaddr_match() and pf_ipaddr_match() could continue even if hp is not assigned
print_ripso() checks if ripso_class is detected but the test is incorrect.
print_rpc_gss_init_arg() and print_rpc_gss_init_res() should print from pos = 0