Wireshark mailing list archives

Re: [Wireshark-dev] 回复： how to display a packet in the packet_view?

From: Richard Sharpe <realrichardsharpe () gmail com>
Date: Sun, 23 Feb 2014 17:27:35 -0800

On Sun, Feb 23, 2014 at 5:12 PM, 我想不无聊 <237825552 () qq com> wrote:

thanks.you mean that the display operation is done in the
dissector,right?


Yes. A dissector is called according to the protocols above it. It
then adds things to the proto tree and the columns as it needs to.

when i debug the wireshark source,i check the function
callstack and i can not find the display function,but i want to change the
display infomation,what should i do?and what infomation will be display in
the packet view,is that column_info?


You need to find things like proto_tree_add... for the info you are
interested in ...


------------------ 原始邮件 ------------------
发件人: "Guy Harris";<guy () alum mit edu>;
发送时间: 2014年2月24日(星期一) 凌晨3:41
收件人: "Developer support list for Wireshark"<wireshark-dev () wireshark org>;
主题: Re: [Wireshark-dev] how to display a packet in the packet_view?


On Feb 23, 2014, at 7:44 AM, 我想不无聊 <237825552 () qq com> wrote:

after get and dissect a packet,how to display this packet in the
packet_view?by call which  function in which file?


You don't.  If Wireshark needs to display a packet in the packet view, it'll
call the top-level frame dissector, and that will call the next dissector,
and so on, including your dissector.  It will then display the results.  You
don't need to do anything to cause it to be displayed (and can't do anything
to prevent it from being displayed).

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request () wireshark org?subject=unsubscribe

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request () wireshark org?subject=unsubscribe




-- 
Regards,
Richard Sharpe
(何以解�n？唯有杜康。--曹操)

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request () wireshark org?subject=unsubscribe

Current thread:

how to display a packet in the packet_view? ?????????? (Feb 23)
- Re: how to display a packet in the packet_view? Richard Sharpe (Feb 23)
- Re: how to display a packet in the packet_view? Guy Harris (Feb 23)
  - ?????? how to display a packet in the packet_view? ?????????? (Feb 23)
    - Re: [Wireshark-dev] 回复： how to display a packet in the packet_view? Richard Sharpe (Feb 23)
    - Re: ?????? how to display a packet in the packet_view? Guy Harris (Feb 23)
    - ?????? ?????? how to display a packet in the packet_view? ?????????? (Feb 24)
    - Re: ?????? ?????? how to display a packet in the packet_view? Guy Harris (Feb 24)
    - ?????? ?????? ?????? how to display a packet in the packet_view? ?????????? (Feb 24)
    - Re: ?????? ?????? ?????? how to display a packet in the packet_view? Guy Harris (Feb 25)