This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Function to print out packet protocol info

0

When I debug Wireshark in VS2010 and I set a breakpoint at the place of : row = packet_list_append(cinfo, fdata, &edt.pi); I have noticed that the parameter of "to_read" means that Wireshark get a number of packets from the capture file in a "while" loop until "to_read" is zero. The column info of each packet is filled in every time the packet is dissected. However, about the number of "to_read" of packet info are displayed in one step. There must be a packet list or some structure like that to store the printing info, I guess. Now I want to figure out the functions to print out the displayed info in the window as I am planning to insert these packets info into database in one step, too. Thank you!

asked 09 Jul '13, 21:45

constance's gravatar image

constance
10224
accept rate: 0%