Wireshark mailing list archives

Re: using pinfo structure to save data after first iteration

From: koundinya poluri <koundi.poluri () gmail com>
Date: Tue, 30 Jun 2015 17:43:17 +0530

Hi guys,

I am not completely familiar with the conversations part of wireshark.I did
go throught the sharkfest ppt by Guy Haaris.Then I realized that i can use
the p_add_proto_data or p_get_proto_data to save data for each packet.I am
not familar with it so I am reading rtp dissectors's code to understand it
better.

As I understand a conversation is created using the port and ip addresses
and then dissectors add their convo_data using the handle(proto_rtp in case
of rtp) then you can get get the conversation using find_conversation.The
link I am missing is how is this conversation related to
p_add/get_proto_data.
So I have a couple of questions hope you dont mind answering them!

1.How is a conversation related to p_add/get_proto_data.
2.where does p_add_proto_data save the data after it is called?

Thanks a lot!
-koundinya

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev () wireshark org>
Archives:    https://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request () wireshark org?subject=unsubscribe

Current thread:

using pinfo structure to save data after first iteration koundinya poluri (Jun 29)
- Re: using pinfo structure to save data after first iteration Anders Broman (Jun 30)
- <Possible follow-ups>
- Re: using pinfo structure to save data after first iteration koundinya poluri (Jun 30)
  - Re: using pinfo structure to save data after first iteration Anders Broman (Jun 30)
- Re: using pinfo structure to save data after first iteration koundinya poluri (Jun 30)
  - Re: using pinfo structure to save data after first iteration Anders Broman (Jun 30)