Wireshark-dev: Re: [Wireshark-dev] decode many type of messages
From: "yin sun" <sunyin51@xxxxxxxxx>
Date: Thu, 7 Jun 2007 10:26:58 -0400
Hi Darwin,

Usually the type of a data structure should be less, right. As your
data below is req1,2,3 I guess they should share similar data type.
Anyway, no matter how many data types, they all down to some form of
bytes. So if you know what the byte format of type A, B, C, D ...
you can easily switch them. Also if those types are not variable byte
length, you can write in ASN.1 format and auto-generate the decoder.

Regards
/Yin

On 6/6/07, Darwin Liu <Darwin.Liu@xxxxxxx> wrote:
Dear Sir:
        I have faced a problem, please kindly give me some help or
advice.
        In my project,I have define many data struct such as below:
typedef struct
{
    A  type;
    B  appHandle;
} Req1;
typedef struct
{
    C  type;
    D  appHandle;
   E    dowp;
} Req2;
typedef struct
{
    F  type;
    G     Handle;
        B    dowp;
} Req3;
.... So on...
    And there are about 2000 types I have defined in my projects just
like above, and every type is difference from each other. And now I have
add a log system in my project,I log the binary raw data of very types
above just when I use them.After I got the binary raw data of my system
I want to use wireshark to decode it,and how can I got it? I am afraid
of there will be a big job to write a plugins to decode some many type
of struct just as Wireshark Developer's Guide chapter 8 Packet
dissection teach us.
        Can anybody give me some advice on it to quick develop such a
plugin?

Best Regards,
Darwin


To access the latest news from CSR copy this link into a web browser:  http://www.csr.com/email_sig.php

To get further information regarding CSR, please visit our Investor Relations page at http://ir.csr.com/csr/about/overview
_______________________________________________
Wireshark-dev mailing list
Wireshark-dev@xxxxxxxxxxxxx
http://www.wireshark.org/mailman/listinfo/wireshark-dev