Note: developed for Wireshark 1.99.7
These dissectors extend the Wireshark IEEE802.15.4 dissectors with the following:
- dissect the IEEE802.15.4 FCF for "version 2" frames (new in IEEE802.15.4e-2012)
- dissect all Information Elements used in draft-6tisch-minimal
- dissect IP-in-IP encapsulation
The source code of those dissectors is available as open-source code (BSD license). Although we are making final adjustments, you can use the code today. For now, you have to recompile Wireshark (instructions below); we will work on submitting this code to the Wireshark project once we are finished.
Clone this repo in your Wireshark source code so you can push/pull changes and easy recompile without moving files around.
- download the "Development Release" source code from https://www.wireshark.org/download.html
- unzip
- rename
wireshark-1.XX.X\epan\dissectors\
topwireshark-1.XX.X\epan\dissectors_old\
- clone the repo in
wireshark-1.XX.X\epan\
and rename the clone todissectors\
- move all the contents of
wireshark-1.XX.X\epan\dissectors_old\
intowireshark-1.XX.X\epan\dissectors\
- The
.gitignore
is set up in such a way that you will not commit any code other than the IEEE802.15.4 dissector
Follow https://www.wireshark.org/docs/wsdg_html_chunked/ChSetupWin32.html to install the toolchain.
On Windows 8.1 open the VS2013 shell by:
- looking for "visual"
- select "Visual Studio Tools"
- selecting "VS2013 x64 Native Tools Command Prompt"
Prepare the environment:
set CYGWIN=C:\cygwin64
set WIRESHARK_BASE_DIR=C:\wireshark\wireshark-1.99.7
set WIRESHARK_TARGET_PLATFORM=win64
set QT5_BASE_DIR=C:\Qt\Qt5.4.2\5.4\msvc2013_64_opengl
set WIRESHARK_VERSION_EXTRA=-6tisch_0.3
set PATH=C:\cygwin64\bin;%PATH%
cd C:\wireshark\wireshark-1.99.7
verify installation
nmake -f Makefile.nmake verify_tools
setup
nmake -f Makefile.nmake setup
clean
nmake -f Makefile.nmake clean
build
nmake -f Makefile.nmake all
create installer:
nmake -f Makefile.nmake packaging
Installer is created at C:\wireshark\wireshark-1.99.7\packaging\nsis
- go to
wireshark/
folder - make sure you have all dependencies.
- Install
Qt5
sudo apt-get install qt5-default
sudo apt-get install libqt5multimedia5 libqt5multimediawidgets5
- Install
GTK3
sudo apt-get install libgtk-3-dev
- Install
libpcap
sudo apt-get install libpcap0.8-dev
- Install
- Confiure and build
./configure
make
- Run
./wireshark
- Or create the deb package
dpkg-buildpackage -us -uc -rfakeroot