Writing a dissector for wireshark

Bitcoin Forum

May 11, 2024, 04:40:13 AM

Welcome, Guest. Please login or register.

News: Latest Bitcoin Core release: 27.0 [Torrent]

Home

Help

Bitcoin Forum > Bitcoin > Development & Technical Discussion > Writing a dissector for wireshark

Pages: [1]

« previous topic next topic »

Author

Topic: Writing a dissector for wireshark (Read 6958 times)

bluecmd (OP)

Newbie

Offline

Activity: 14
Merit: 0

Writing a dissector for wireshark

June 05, 2011, 10:30:30 AM

Hello.

After playing a bit with writing a python implementation of the protocol (extending pybitcoin) I find it very frustrating that I am unable to debug my packets. A quick scan around the wiki, IRC and forums revealed that no-one has stepped up to produce one, but I am going to write a wireshark dissector. Hopefully this will make the life of alternative implementations developers a bit easier.

I'll keep you posted - I should have something basic working by the end today or tomorrow and continue to extend it as I go along.

1715402413

Hero Member

Offline

Posts: 1715402413

Ignore

1715402413

1715402413


	Report to moderator

1715402413

Hero Member

Offline

Posts: 1715402413

Ignore

1715402413


	Report to moderator

1715402413

Hero Member

Offline

Posts: 1715402413

Ignore

1715402413


	Report to moderator

There are several different types of Bitcoin clients. The most secure are full nodes like Bitcoin Core, which will follow the rules of the network no matter what miners do. Even if every miner decided to create 1000 bitcoins per block, full nodes would stick to the rules and reject those blocks.

Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.

1715402413

Hero Member

Offline

Posts: 1715402413

Ignore

1715402413


	Report to moderator

1715402413

Hero Member

Offline

Posts: 1715402413

Ignore

1715402413


	Report to moderator

bluecmd (OP)

Newbie

Offline

Activity: 14
Merit: 0

Re: Writing a dissector for wireshark

June 05, 2011, 04:21:15 PM

You can track progress on https://github.com/blueCommand/bitcoin-dissector
Currently supporting version, verack and addr messages.

blap

Newbie

Offline

Activity: 51
Merit: 0

Re: Writing a dissector for wireshark

June 06, 2011, 12:04:40 AM

alkor

Full Member

Offline

Activity: 136
Merit: 100

Re: Writing a dissector for wireshark

June 06, 2011, 01:53:09 AM

In addition to pybitcoin, there is another python implementation of bitcion that you may be interested in:

https://github.com/phantomcircuit/bitcoin-alt

I think it is almost complete. The only thing that it is missing is the verify signature stuff in the scripting language.

bluecmd (OP)

Newbie

Offline

Activity: 14
Merit: 0

Re: Writing a dissector for wireshark

June 06, 2011, 08:03:38 AM

Quote from: alkor on June 06, 2011, 01:53:09 AM

Perfect! pybitoin seems to be abandoned, this project is in a much better state. Thank you!
It will do nicely in testing the dissector.

bluecmd (OP)

Newbie

Offline

Activity: 14
Merit: 0

Re: Writing a dissector for wireshark

June 06, 2011, 06:30:00 PM
Last edit: June 07, 2011, 05:59:14 AM by bluecmd

Success!

Every message except for IP transactions, alert and headers are handled. The reason why these are not implemented is that I cannot verify that they behave like the documentation. I will extend this as we go along, but this will hopefully help people debug their clients and such.

Screenshot:
http://data.fuskbugg.se/skalman02/4ded1c579b364_wireshark.jpg