Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.
Wireshark logo

Wireshark-bugs: [Wireshark-bugs] [Bug 4225] New: Per frame comments added in Network Monitor 3 c

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Mon, 9 Nov 2009 11:35:16 -0800 (PST)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4225

           Summary: Per frame comments added in Network Monitor 3 capture
                    file
           Product: Wireshark
           Version: 1.2.0
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: Major
          Priority: Low
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: paullo@xxxxxxxxxxxxx


Created an attachment (id=3933)
 --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=3933)
Capture file with a single commented frame

Build Information:
Version 1.2.0 (SVN Rev 28753)

Copyright 1998-2009 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled with GTK+ 2.14.7, with GLib 2.18.4, with WinPcap (version unknown),
with libz 1.2.3, without POSIX capabilities, without libpcre, without SMI,
without c-ares, without ADNS, with Lua 5.1, without GnuTLS, without Gcrypt,
without Kerberos, without GeoIP, with PortAudio V19-devel (built Jun 15 2009),
without AirPcap.
NOTE: this build doesn't support the "matches" operator for Wireshark filter
syntax.

Running on Windows Vista, build 7600, without WinPcap.

Built using Microsoft Visual C++ 9.0 build 30729

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.
--
Starting with Network Monitor 3.3, Netmon Capture File version 2.3, we've added
per frame commenting. A use can edit and add comments for each frame which
includes a title and details section.  The details section is Rich Text
enabled.

The Capture File Header section of the help under Network Monitor
Overview->Capture File Format->Network Monitor Capture File Format describes
the file header and the newly added Comment Info Offset and Length section. 
These are at offset 0x28 and 0x2C respectively.  They reference an offset in
the capture which contains the comment information.

The Comment Info section (in the same section as above) describes the layout of
each comment.  Comments are serialized.

In the attached capture file there is one frame with one comment.  The offset
of the comment table is 0x589 with a length of 0x1BB.


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
Wireshark logo footer

© Wireshark Foundation · Privacy Policy

Facebook·Mastodon·Twitter·YouTube