Note: developed for Wireshark 1.99.7

These dissectors extend the Wireshark IEEE802.15.4 dissectors with the following:

• dissect the IEEE802.15.4 FCF for "version 2" frames (new in IEEE802.15.4e-2012)
• dissect all Information Elements used in draft-6tisch-minimal
• dissect IP-in-IP encapsulation

The source code of those dissectors is available as open-source code (BSD license). Although we are making final adjustments, you can use the code today. For now, you have to recompile Wireshark (instructions below); we will work on submitting this code to the Wireshark project once we are finished.

Clone this repo in your Wireshark source code so you can push/pull changes and easy recompile without moving files around.

• download the "Development Release" source code from https://www.wireshark.org/download.html
• unzip
• rename wireshark-1.XX.X\epan\dissectors\ top wireshark-1.XX.X\epan\dissectors_old\
• clone the repo in wireshark-1.XX.X\epan\ and rename the clone to dissectors\
• move all the contents of wireshark-1.XX.X\epan\dissectors_old\ into wireshark-1.XX.X\epan\dissectors\
• The .gitignore is set up in such a way that you will not commit any code other than the IEEE802.15.4 dissector

Follow https://www.wireshark.org/docs/wsdg_html_chunked/ChSetupWin32.html to install the toolchain.

On Windows 8.1 open the VS2013 shell by:

• looking for "visual"
• select "Visual Studio Tools"
• selecting "VS2013 x64 Native Tools Command Prompt"

Prepare the environment:

set CYGWIN=C:\cygwin64
set WIRESHARK_BASE_DIR=C:\wireshark\wireshark-1.99.7
set WIRESHARK_TARGET_PLATFORM=win64
set QT5_BASE_DIR=C:\Qt\Qt5.4.2\5.4\msvc2013_64_opengl
set WIRESHARK_VERSION_EXTRA=-6tisch_0.3
set PATH=C:\cygwin64\bin;%PATH%
cd C:\wireshark\wireshark-1.99.7

verify installation

nmake -f Makefile.nmake verify_tools

setup

nmake -f Makefile.nmake setup

clean

nmake -f Makefile.nmake clean

build

nmake -f Makefile.nmake all

create installer:

nmake -f Makefile.nmake packaging

Installer is created at C:\wireshark\wireshark-1.99.7\packaging\nsis

• go to wireshark/ folder
• make sure you have all dependencies.
  • Install Qt5
    • sudo apt-get install qt5-default
    • sudo apt-get install libqt5multimedia5 libqt5multimediawidgets5
  • Install GTK3
    • sudo apt-get install libgtk-3-dev
  • Install libpcap
    • sudo apt-get install libpcap0.8-dev
• Confiure and build
  • ./configure
  • make
• Run
  • ./wireshark
• Or create the deb package
  • dpkg-buildpackage -us -uc -rfakeroot