Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-dev: [Wireshark-dev] Adding a Protocol as SCTP Payload

From: "Behdad Forghani" <behdad.forghani@xxxxxxxxxxxxxx>
Date: Mon, 23 Feb 2009 18:29:01 -0500

Hello,

 

I decided to be lazy and ask this question before I dig in deeper. I am trying to get SCTP DATA to decode as S1AP based on PPID in Wireshark 1.1.2. I am doing it on Fedora 10.

I added :

#define S1AP_PAYLOAD_PROTOCOL_ID   18

To sctpppids.h

I added :

dissector_add("sctp.ppi",  S1AP_PAYLOAD_PROTOCOL_ID, s1ap_handle);

Packet-s1ap-template.c

Just before dissector_add("sctp.port", SctpPort, s1ap_handle);

Finally, I added

{ S1AP_PAYLOAD_PROTOCOL_ID,            "S1AP" },

 To sctp_payload_proto_id_values in packet-sctp.c

The code shows up in packet-s1ap.c

I expected S1AP to show up in Decode AS dialog in the Transport tab, but, it does not. Can you tell me from the top of your head what I did wrong?

 

Thanks,

Behdad