Wireshark-dev: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

From: "Anders Broman \(AL/EAB\)" <anders.broman@xxxxxxxxxxxx>
Date: Fri, 8 Sep 2006 12:54:56 +0200
Title: A question about ASN.1 encoding in wireshark
Hi,
Those files are generated by asn2wrs and used to build packet-foo.c[h] after which they are deleted ( if the option to keep them are not used), line numbers
in the packet-foo.c[h] are made to refere to the intermediate files which is good sometimes and bad sometimes. you'll have to find
which line in the packet-foo.c corresponds to the error received and fix it :-)
 
Brg
Anders


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of chris.guo@xxxxxxxxx
Sent: den 8 september 2006 12:04
To: wireshark-dev@xxxxxxxxxxxxx
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi,
 
Anyone can tell me what is the file packet-foo-hf.c, packet-foo-ett.c, packet-foo-fn.c, packet-foo-hfarr.c and packet-foo-ettarr.c stands for?
 
When I was trying to build wireshark it reported some syntax errors in file packet-foo-fn.c, but I can not find it, do those files generated automatically according to the foo.cnf file?should I update the foo.cnf file accordingly?
 
Thanks
Chris


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of ext Jacob Avraham
Sent: Wednesday, September 06, 2006 10:10 PM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

I added a new page to the wiki with the complete sample code and linked it to the Asn2wrs page.

http://wiki.wireshark.org/FooPage

 

HTH,

 

Jacob

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of chris.guo@xxxxxxxxx
Sent: Wednesday, September 06, 2006 3:30 PM
To: wireshark-dev@xxxxxxxxxxxxx
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

 

Hi Jacob,

 

That would be very great if you can post your example on the web page, or send the the example to me by emal, that would be very helpful for a new user who is trying to make a new ASN1 based dissector.

 

Thank you very much,

Chris

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of ext Jacob Avraham
Sent: Tuesday, September 05, 2006 11:34 PM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi,

 

I was struggling with the same issue a couple of days ago, as it wasn't clear from reading

other dissectors what needs to be done.

So I wrote a very basic dissector that dissects UDP packets off a curtain port and are ASN1 encoded

with a couple of fields.

I think that such an example could be useful under the asn1 directory.

Let me know if you want me to post it and how to post it.

 

Jacob

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of Anders Broman (AL/EAB)
Sent: Tuesday, September 05, 2006 11:59 AM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

 

Hi,

You have to write a dissector for your protocol and have it register for the TCP port used in order to have the protocol dissected.

Brg

Anders

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of chris.guo@xxxxxxxxx
Sent: den 5 september 2006 05:38
To: wireshark-dev@xxxxxxxxxxxxx
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi,

 

I made a ASN1 based message on TCP, but could not get anything displayed after TCP in wireshark. by default it used ENTTEC after TCP.

 

 

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of ext Anders Broman (AL/EAB)
Sent: Wednesday, August 30, 2006 4:09 PM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi,

Do you get anything displayed after TCP?

See http://wiki.wireshark.org/Asn2wrs on how to design an asn1 based dissector using asn2wrs.

 

Best regards

Anders

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of chris.guo@xxxxxxxxx
Sent: den 30 augusti 2006 04:03
To: wireshark-dev@xxxxxxxxxxxxx
Subject: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi All,

I have a question about ASN.1 decoding in wirshark, hope can get someone's help.

I have my own defined ASN.1 messages, these messages are decoded with BER, the messages transfer based on TCP/IP, wireshark can capture the messages, and decode the message, but can not display the field name in the detailed information area.

I want to add my ASN.1 definitions in wireshark, and can decode/show the message correctly in the detailed information area in the wireshark, but I do not know how to proceed, it there any one can share the experiences or send me some useful materials?

Thank you very much,

Chris