Hello,
i'm new to the dissector developement for wireshark. I've read that it
should be actually possible to dissect multiple PDUs from one TCP
Segment with tcp_dissect_pdus(), but i don't get it working.
For example: i've got 2 different PDUs with different lengths (5 and 6).
I already got the pdu lengths. Both PDUs are located in one TCP-Segment
with the Datalength of 11.
So for the first PDU the function...
tcp_dissect_pdus(tvb, pinfo, tree, TRUE, min_pdu_size, " first_pdu_size
= 5 ", dissect_pdu_sc);
is called and the Datastream with the correct size (proved) should be
passed to the dissector function dissect_pdu_sc.
My first problem:
At the dissection of my top level protocol the PDU is marked as
[Malformed Packet], why? Size is correct! TCP-Stream shows the complete
data of my PDU
My second problem:
The second PDU within the the TCP Segment wont be dissected and not
shown as a part of my top level protocol. Is the second PDU
automatically processed or do i have to call the function
tcp_dissect_pdus() again?
Any suggestion would be nice,
Thanks, Robert
