Wireshark mailing list archives
Re: Chained CAN dissecector: Can not get reference for CAN dissector
From: Pascal Quantin <pascal.quantin () gmail com>
Date: Tue, 15 Dec 2015 12:25:59 +0100
2015-12-15 11:37 GMT+01:00 Sebastian Schildt <sebastian () frozenlight de>:
Hello Wiresharkers,
I have a problem (obviously :) ) . I want to create a CAN dissector (in
Lua). What I already achieved is creating a Can subdissector: So my
dissector gets called for CAN payload. However, I need access to the CAN
identfier, so I figured my dissector needs to be on the same "level" as the
CAN dissector (right?)
Therefore I tried to use the "chained dissector" pattern, where my
dissector would call the CAN dissector and then does some further
processing. For this my dissector must call the CAN dissector, but I do not
know how to get a reference to it.
I tried
original_can_dissector = Dissector.get("CAN")
or
original_can_dissector = Dissector.get("can")
that did not work, then I used lua to print
for key,value in pairs(Dissector.list()) do print(key,value) end
but I did not find any reference to CAN. Is the CAN dissector hidden in
some DissectorTable? But then which one? I couldn't find it.
The relevant lines in the C code seem to be
proto_can = proto_register_protocol(
"Controller Area Network", /* name */
"CAN", /* short name */
"can" /* abbrev */
);
And
dissector_handle_t can_handle;
can_handle = create_dissector_handle(dissect_socketcan, proto_can);
dissector_add_uint("wtap_encap", WTAP_ENCAP_SOCKETCAN, can_handle);
dissector_add_uint("sll.ltype", LINUX_SLL_P_CAN, can_handle);
but I am not very familiar with Wireshark source, so I am guestimating
here.
Also, after solving the problem of getting a reference to the original CAN
dissector I guess I need to replicate the add_uint calls in Lua to register
my own dissector. If anyone has the correct syntax up his sleeve I'd also
appreciate it :)
Hi Sebastian, The CAN dissector does not register itself by name (no call to register_dissector() function), so as you noticed you will not find it on the list. The best way to move forward would be be to contribute to Wireshark so as to add the missing register_dissector function call. But it will be only added to the development tree (Wireshark 2.1) and not backported to stable releases as I do not think it will be considered as a fix, but an enhancement. Regards, Pascal.
___________________________________________________________________________ Sent via: Wireshark-dev mailing list <wireshark-dev () wireshark org> Archives: https://www.wireshark.org/lists/wireshark-dev Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev mailto:wireshark-dev-request () wireshark org?subject=unsubscribe
Current thread:
- Chained CAN dissecector: Can not get reference for CAN dissector Sebastian Schildt (Dec 15)
- Re: Chained CAN dissecector: Can not get reference for CAN dissector Pascal Quantin (Dec 15)
- Re: Chained CAN dissecector: Can not get reference for CAN dissector Sebastian Schildt (Dec 21)
- Re: Chained CAN dissecector: Can not get reference for CAN dissector Michael Mann (Dec 15)
- Re: Chained CAN dissecector: Can not get reference for CAN dissector Sebastian Schildt (Dec 15)
- Re: Chained CAN dissecector: Can not get reference for CAN dissector Pascal Quantin (Dec 15)