Thanks Pascal,
You are completely right. We have a 2.0 and a 2.2 version. I’ve got a new PC and in the confusion I copied the wrong version onto the new PC.
Best regards…Paul
From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx]
On Behalf Of Pascal Quantin
Sent: 22 December 2016 15:18
To: Developer support list for Wireshark <wireshark-dev@xxxxxxxxxxxxx>
Subject: Re: [Wireshark-dev] Field Registration Error
Hi Paul,
2016-12-22 16:04 GMT+01:00 Paul Offord <Paul.Offord@xxxxxxxxxxxx>:
Hi,
I upgraded from 2.2.2 to 2.2.3 a few days ago. I have a dissector( written in C) that I wrote a while back that works OK with 2.2.2 but not 2.2.3. With the latter, on Wireshark
start up I get:
14:49:57 Err Field 's-sitename' (iis_log.s_sitename) is a FT_ABSOLUTE_TIME but is being displayed as BASE_NONE instead of as a time
My definition for the field registration array is:
static hf_register_info hf[] = {
{ &hf_bds_type,
{ "BDS Type", "bds.type",
FT_UINT16, BASE_DEC,
vs_type, 0x0,
NULL, HFILL }
},
{ &hf_bds_format,
{ "BDS Format", "bds.format",
FT_UINT16, BASE_DEC,
vs_format, 0x0,
NULL, HFILL }
},
{ &hf_iis_s_sitename,
{ "s-sitename", "iis_log.s_sitename",
FT_STRING, BASE_NONE, NULL, 0x0,
"IIS site name", HFILL } },
.
.
I’m going to do some debugging this evening but I wondered if there have been any changes made to field registration.
Are you sure you are not using a plugin compiled against master-2.0 branch? It would lead to this kind of error due to the addition of FT_IEEE_11073_SFLOAT and FT_IEEE_11073_FLOAT values in epan/ftypes/ftypes.h:
the numerical value for FT_STRING in 2.0 branch corresponds to FT_ABSOLUTE_TIME in 2.2 branch.
This file was not changed between 2.2.2 and 2.2.3.
______________________________________________________________________
This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.
Any views or opinions expressed are solely those of the author and do not necessarily represent those of Advance Seven Ltd. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission.
Advance Seven Ltd. Registered in England & Wales numbered 2373877 at Endeavour House, Coopers End Lane, Stansted, Essex CM24 1SJ
______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
______________________________________________________________________
|
