ANNOUNCEMENT: Live Wireshark University & Allegro Packets online APAC Wireshark Training Session
April 17th, 2024 | 14:30-16:00 SGT (UTC+8) | Online
Wireshark logo

Wireshark-bugs: [Wireshark-bugs] [Bug 3932] New: Add a Subdissector Table for (vendor specific)

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Mon, 24 Aug 2009 00:55:23 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3932

           Summary: Add a Subdissector Table for (vendor specific) MSTP
                    Frametypes
           Product: Wireshark
           Version: SVN
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: Enhancement
          Priority: Low
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: andreas.becker@xxxxxxx



Andreas Becker <andreas.becker@xxxxxxx> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Attachment #3560|                            |review_for_checkin?
               Flag|                            |


Created an attachment (id=3560)
 --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=3560)
add a subdissector Table for BACnet MSTP Frames

Build Information:

Compiled with GTK+ 2.16.2, with GLib 2.20.3, with WinPcap (version unknown),
with libz 1.2.3, without POSIX capabilities, with libpcre 7.0, with SMI 0.4.8,
with c-ares 1.6.0, with Lua 5.1, without Python, with GnuTLS 2.8.1, with Gcrypt
1.4.4, with MIT Kerberos, with GeoIP, with PortAudio V19-devel (built Aug 20
2009), with AirPcap.

Running on Windows XP Service Pack 3, build 2600, with WinPcap version 4.1
beta5
(packet.dll version 4.1.0.1452), based on libpcap version 1.0.0, GnuTLS 2.8.1,
Gcrypt 1.4.4, without AirPcap.

Built using Microsoft Visual C++ 9.0 build 30729
--
I want to be able, to add some own Subdissectors for Vendor Specific MSTP
Frames. For that I used a subdissector table.
Frame Types from 0 to 127 are reserved by ASHRAE. The Frame Types from 128 to
255 are available to vendors for non-BACnet Frames, you need to write the
Vendor ID to the first two octets.
With this patch you could register your own dissector with VendorID and Frame
Type from 8 to 255 while using a LUA Script:

do
        local mstp_frametype_table = DissectorTable.get("mstp.prop")
        local ip_dissector = Dissector.get("ip")

--          ((VendorID << 16) + Frametype) 
            mstp_frametype_table:add((159 * 256 * 256) + 159,ip_dissector)
            mstp_frametype_table:add((159 * 256 * 256) + 160,ip_dissector)
end


(How to add a second (capture-) file here? .. Please e-mail to me, if usefull.)


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
Wireshark logo footer

© Wireshark Foundation · Privacy Policy

Facebook·Mastodon·Twitter·YouTube