Wireshark-dev: Re: [Wireshark-dev] DESEGMENT_ONE_MORE_SEGMENT usage/fault

From: wsgd <wsgd@xxxxxxx>
Date: Mon, 22 Mar 2010 20:32:50 +0100
Are you above TCP ?
Inside Wireshark,
verify that "Edit / Preferences / Protocols / TCP / Allow subdissector to reassemble TCP streams"
is checked.


Olivier


Lajos Ol�h a �crit :
Hi all,
I'm developing a dissector dissecting MTP2 packets from RTP stream (for semipermanent connections). I used part of the code from packet-lapd.c (it is almost tha same except that it is for the LAPD protocol). In that code, when the RTP data ends in the middle of an MTP2 packet, the dissector sets pinfo->desegment_offset = 0 and pinfo->desegment_len = DESEGMENT_ONE_MORE_SEGMENT and exits. In the README.developer, it is written that if a dissector sets these values and returns it will be called again with data from the actual packet plus the data from the next packet. But this never happens. My dissector is never called with more data than 1 RTP data filed (40 byte in my case). I've also created debug patches for the TELNET dissector (packet-telnet.c) (to test this defregmentation functionality outside my buggy code) to force the dissector to always request data from the next packet using DESEGMENT_ONE_MORE_SEGMENT but it was failing as well. Have anyone of You encountered such problem? Am I doing something wrong? Do I need to do something extra to get this feature work or we have a wireshark bug? Please share experiences with these defregmentation method. (I've attached my code with debug printing included) Thanks.



*LAJOS OLAH *
*System Test Engineer*

Ericsson Telecom Hungary
RFT/D
Budapest, Irinyi Jozsef Street 4-20
1017, Hungary
Phone +36309537333
lajos.olah@xxxxxxxxxxxx
_www.ericsson.com_





Ericsson Magyarorsz�g Kft., Sz�khely: Budapest, Laborc u.1. Nyilv�ntart� c�gb�r�s�g: F�v�rosi B�r�s�g. C�gjegyz�ksz�m: 01-09-070937

This Communication is Confidential. We only send and receive email on the basis of the term set out at _www.ericsson.com/email_disclaimer_ <http://www.ericsson.com/email_disclaimer> ------------------------------------------------------------------------

------------------------------------------------------------------------

------------------------------------------------------------------------

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev@xxxxxxxxxxxxx>
Archives:    http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request@xxxxxxxxxxxxx?subject=unsubscribe


--
Wireshark Generic Dissector http://wsgd.free.fr