Andreas wrote: >>> So far I've seen only lots of boolean values. >> >> You might want to take a look at proto_tree_add_bitmask(). See >> doc/README.developer, which describes it and illustrates its use by taking an >> example from the SCSI dissector. > >Where can I get a sample capture file to see how this will look like?
The easiest thing might be to look at epan/dissectors/packet-tcp.c for the code and pretty much any capture file with TCP. In the code, look for hf_tcp_flags and in a capture file, just look at the TCP flags. Also, looking at doc/README.developer is highly recommended. It's how I learned. Ed ___________________________________________________________________________ Sent via: Wireshark-dev mailing list <[email protected]> Archives: http://www.wireshark.org/lists/wireshark-dev Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev mailto:[email protected]?subject=unsubscribe
