This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

PSML and PDML file consistency between Wireshark on Windows, WireShark on Linux, and Tshark

0

Hello,

I am writing an application which parses PDML and PSML XML files (then using their content). These files could be created on Windows or Linux, with Wireshark or Tshark. Will PDML and PSML files created with Wireshark on Linux, Wireshark on Windows and Tshark on Linux all be exactly the same, or will there be any differences between them? I am using regular expressions on the content so it is vital to my application that there are no differences.

Many thanks.

asked 05 Oct '16, 07:54

Lobster's gravatar image

Lobster
11448
accept rate: 0%


One Answer:

1

The only measure of stability guaranteed is PDML / PSML schema compliance, so a more flexible parser would be more future proof. Other than that the programs use the same routines to output these files, so you should be good.

answered 05 Oct '16, 14:56

Jaap's gravatar image

Jaap ♦
11.7k16101
accept rate: 14%

Thanks for your answer :)

What do you mean by 'a more flexible parser would be more future proof'?

And will there be any differences due to character encoding on different platforms?

(13 Oct '16, 08:36) Lobster