| Bug ID |
9612
|
| Summary |
Dissector of AMQP 1.0
|
| Classification |
Unclassified
|
| Product |
Wireshark
|
| Version |
unspecified
|
| Hardware |
All
|
| OS |
All
|
| Status |
UNCONFIRMED
|
| Severity |
Normal
|
| Priority |
Low
|
| Component |
Dissection engine (libwireshark)
|
| Assignee |
[email protected]
|
| Reporter |
[email protected]
|
Build Information:
wireshark 1.11.3 (SVN Rev 53597 from /trunk)
--
Enhance AMQP dissector to let it decode AMQP 1.0 protocol
(http://docs.oasis-open.org/amqp/core/v1.0/amqp-core-complete-v1.0.pdf).
The attached patch is supposed to dissect almost all bits of the protocol, and
has been also tested on various inputs. I am attaching also one AMQP 1.0
tcpdump for reference and one AMQP 0-10 tcpdump for comparison.
Additionally, the patch fixes a typo in dissect_amqp_0_10_array (see
element_suffix variable, line 2876).
Not-obvious structs and functions are described in comments.
I am happy to maintain AMQP 1.0 dissector (optionally, I could also 0.10 while
0.9 I dont know its spec).
TODO for the 1.0 dissector:
- decoding type descriptor constructor, it lacks "fixed-sixteen", compound and
array types (very rarely used, imho)
- decimal[32|64|128] primitive types missing (per IEEE 754-2008; I dont know
the spec and dont have an example of tcpdump to test/see encoded decimal
number)
- "timestamp" primitive value might be wrong formatted (proto_tree_add_time not
used)
- known issue when a list is within map structure: wrong type name is displayed
(see line 9839)
You are receiving this mail because:
- You are watching all bug changes.