ec91064169
In Wireshark commit of 7cd6906056922e4b8 (contained in v2.4.0) the tvb_new_subset() function was renamed to tvb_new_subset_length_caplen(). However, we can take the extra step and rename to tvb_new_subset_remaining() directly (see Wireshark commit 0ecfc7280cf3d7). The reasoning is that there is no other protocol in the packet than libvirt. Therefore, from the point that libvirt dissector takes over till the end of the packet it's all libvirt packet. Signed-off-by: Michal Privoznik <mprivozn@redhat.com> Reviewed-by: Martin Kletzander <mkletzan@redhat.com> |
||
|---|---|---|
| .. | ||
| samples | ||
| src | ||
| util | ||
| README.md | ||
About
This is the project of Google Summer of Code 2013 accepted by QEMU.org and libvirt community. The goal of this project is, provide Wireshark dissector for Libvirt RPC protocol. It will provide Libvirt packet overview/detail analysing in Wireshark. Furthermore, it will be able to build(generated) from RPC protocol definition placed in Libvirt source tree to support latest protocol specification.
See also:
- http://www.google-melange.com/gsoc/project/google/gsoc2013/kawamuray/7001
- http://wiki.qemu.org/Features/LibvirtWiresharkDissector
Installation
Run ./configure with --with-wireshark-dissector option enabled. Then dissector will compiled with libvirt itself.
Add/Remove protocol from dissector's support
Modify variable WS_DISSECTOR_PROTO_FILES in tools/wireshark/src/Makefile.am.
Changing installation directory
You can change installation directory of pluggable shared object(libvirt.so) by specifying --with-ws-plugindir=.
You can install libvirt.so into your local wireshark plugin directory:
./configure --with-wireshark-dissector \
--with-ws-plugindir=$HOME/.wireshark/plugins