Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

asked 2020-02-15 14:42:08 +0000

Jannis94 gravatar image

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together, I want to use the new integrated SOME/IP Dissector in Wireshark. If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload. Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working. But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example: Service ID: 0xaaaa Service Name: example Method ID and name: 0x0c10 test1 0x0c20 test2 00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f Analysis: 00 00 00 22 => 34 Bytes vector 00 00 00 1e => Length of first struct is 30 Bytes 20 00 => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0 00 00 00 01 => Property_a(key-value): 1 Type is enum 00 01 => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1 01 =>Property_b: 1 Type is boolean 00 02 => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2 01 =>Property_c: 1 Type is boolean 00 03 => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3 01 =>Property_d: 1 Type is boolean 00 04 => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4 01 =>Property_e: 1 Type is boolean 00 05 => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5 01 =>Property_f: 1 Type is boolean 00 06 => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6 01 =>Property_g: 1 Type is boolean 20 07 => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7 00 00 00 1f =>Property_h: 31 Type is enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this: struct 1: -property_a: value -property_b: value -property_c: value -etc.

Which SOME/IP Parameter do I have to configure? I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List? I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me. Jannis

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together, I want to use the new integrated SOME/IP Dissector in Wireshark. If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload. Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working. But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example: Service ID: 0xaaaa Service Name: example Method ID and name: 0x0c10 test1 0x0c20 test2 00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f
Analysis: 00 00 00 22 => 34 Bytes vector 00 00 00 1e => Length of first struct is 30 Bytes 20 00 => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0 00 00 00 01 => Property_a(key-value): 1 Type is enum 00 01 => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1 01 =>Property_b: 1 Type is boolean 00 02 => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2 01 =>Property_c: 1 Type is boolean 00 03 => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3 01 =>Property_d: 1 Type is boolean 00 04 => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4 01 =>Property_e: 1 Type is boolean 00 05 => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5 01 =>Property_f: 1 Type is boolean 00 06 => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6 01 =>Property_g: 1 Type is boolean 20 07 => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7 00 00 00 1f =>Property_h: 31 Type is enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this: struct 1: -property_a: value -property_b: value -property_c: value -etc.

Which SOME/IP Parameter do I have to configure? I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List? I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me. Jannis

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together, I want to use the new integrated SOME/IP Dissector in Wireshark. If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload. Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working. But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example: Service ID: 0xaaaa Service Name: example Method ID and name: 0x0c10 test1 0x0c20 test2 00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f
Analysis: 00 00 00 22 => 34 Bytes vector vector
00 00 00 1e => Length of first struct is 30 Bytes Bytes
20 00 => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0 0
00 00 00 01 => Property_a(key-value): 1 Type is enum enum
00 01 => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1 1
01 =>Property_b: 1 Type is boolean boolean
00 02 => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2 2
01 =>Property_c: 1 Type is boolean boolean
00 03 => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3 3
01 =>Property_d: 1 Type is boolean boolean
00 04 => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4 4
01 =>Property_e: 1 Type is boolean boolean
00 05 => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5 5
01 =>Property_f: 1 Type is boolean boolean
00 06 => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6 6
01 =>Property_g: 1 Type is boolean boolean
20 07 => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7 7
00 00 00 1f =>Property_h: 31 Type is enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this: struct 1: -property_a: value -property_b: value -property_c: value -etc.

Which SOME/IP Parameter do I have to configure? I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List? I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me. Jannis

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together, I want to use the new integrated SOME/IP Dissector in Wireshark. If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload. Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working. But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example:
 Service ID: 0xaaaa 0xaaaa
Service Name: example example
Method ID and name: name:
0x0c10 test1 test1
0x0c20 test2 test2
00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f
Analysis:
 00 00 00 22 => 34 Bytes vector
00 00 00 1e => Length of first struct is 30 Bytes
20 00 => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0
00 00 00 01 => Property_a(key-value): 1 Type is enum
00 01 => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1
01 =>Property_b: 1 Type is boolean
00 02 => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2
01 =>Property_c: 1 Type is boolean
00 03 => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3
01 =>Property_d: 1 Type is boolean
00 04 => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4
01 =>Property_e: 1 Type is boolean
00 05 => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5
01 =>Property_f: 1 Type is boolean
00 06 => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6
01 =>Property_g: 1 Type is boolean
20 07 => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7
00 00 00 1f =>Property_h: 31 Type is enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this: struct 1: 1:
-property_a: value value
-property_b: value value
-property_c: value value
-etc.

Which SOME/IP Parameter do I have to configure? I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List? I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me. Jannis

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together, I want to use the new integrated SOME/IP Dissector in Wireshark. If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload. Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working. But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example:
Service ID: 0xaaaa
Service Name: example
Method ID and name:
0x0c10 test1
0x0c20 test2
00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f
Analysis:
00 00 00 22 => 34 Bytes vector
00 00 00 1e => Length of first struct is 30 Bytes
20 00 => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0
00 00 00 01 => Property_a(key-value): 1 Type is enum
00 01 => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1
01 =>Property_b: 1 Type is boolean
00 02 => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2
01 =>Property_c: 1 Type is boolean
00 03 => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3
01 =>Property_d: 1 Type is boolean
00 04 => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4
01 =>Property_e: 1 Type is boolean
00 05 => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5
01 =>Property_f: 1 Type is boolean
00 06 => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6
01 =>Property_g: 1 Type is boolean
20 07 => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7
00 00 00 1f =>Property_h: 31 Type is enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this: struct 1:
-property_a: value
-property_b: value
-property_c: value
-etc.

Which SOME/IP Parameter do I have to configure? I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List? I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me. me.
Jannis

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together, together,
I want to use the new integrated SOME/IP Dissector in Wireshark. Wireshark.
If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload. payload.
Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working. working.
But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example:
Service ID: 0xaaaa
Service Name: example
Method ID and name:
0x0c10 test1
0x0c20 test2
00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f
Analysis:
00 00 00 22 => 34 Bytes vector
00 00 00 1e => Length of first struct is 30 Bytes
20 00 => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0
00 00 00 01 => Property_a(key-value): 1 Type is enum
00 01 => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1
01 =>Property_b: 1 Type is boolean
00 02 => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2
01 =>Property_c: 1 Type is boolean
00 03 => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3
01 =>Property_d: 1 Type is boolean
00 04 => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4
01 =>Property_e: 1 Type is boolean
00 05 => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5
01 =>Property_f: 1 Type is boolean
00 06 => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6
01 =>Property_g: 1 Type is boolean
20 07 => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7
00 00 00 1f =>Property_h: 31 Type is enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this: struct 1:
-property_a: value
-property_b: value
-property_c: value
-etc.

Which SOME/IP Parameter do I have to configure? configure?
I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List? List?
I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me.
Jannis

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together,
I want to use the new integrated SOME/IP Dissector in Wireshark.
If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload.
Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working.
But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example:
Service ID: 0xaaaa
Service Name: example
Method ID and name:
0x0c10 test1
0x0c20 test2
00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f
Analysis:
00 00 00 22 => 34 Bytes vector
00 00 00 1e => Length of first struct is 30 Bytes
20 00 => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0
00 00 00 01 => Property_a(key-value): 1 Type is enum
00 01 => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1
01 =>Property_b: 1 Type is boolean
00 02 => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2
01 =>Property_c: 1 Type is boolean
00 03 => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3
01 =>Property_d: 1 Type is boolean
00 04 => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4
01 =>Property_e: 1 Type is boolean
00 05 => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5
01 =>Property_f: 1 Type is boolean
00 06 => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6
01 =>Property_g: 1 Type is boolean
20 07 => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7
00 00 00 1f =>Property_h: 31 Type is enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this: this:
struct 1:
-property_a: value
-property_b: value
-property_c: value
-etc.

Which SOME/IP Parameter do I have to configure?
I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List?
I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me.
Jannis

click to hide/show revision 8
None

updated 2020-02-15 15:27:02 +0000

grahamb gravatar image

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together,
I want to use the new integrated SOME/IP Dissector in Wireshark.
If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload.
Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working.
But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example:

Service ID: 0xaaaa
 0xaaaa
Service Name: example
 example
Method ID and name:
 name:
0x0c10 test1
 test1
0x0c20 test2
 test2
00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f

Analysis:

00 00 00 22    => 34 Bytes vector
 vector
00 00 00 1e    => Length of first struct is 30 Bytes
 Bytes
20 00             => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0
 0
00 00 00 01    => Property_a(key-value): 1 Type is enum
 enum
00 01             => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1
 1
01                 =>Property_b: 1 Type is boolean
 boolean
00 02             => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2
 2
01                  =>Property_c: 1 Type is boolean
 boolean
00 03             => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3
 3
01                  =>Property_d: 1 Type is boolean
 boolean
00 04             => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4
 4
01                 =>Property_e: 1 Type is boolean
 boolean
00 05             => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5
 5
01                 =>Property_f: 1 Type is boolean
 boolean
00 06             => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6
 6
01                  =>Property_g: 1 Type is boolean
 boolean
20 07             => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7
 7
00 00 00 1f    =>Property_h: 31 Type is enum
enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this:

struct 1:
 1:<br>
  -property_a: value
 value<br>
  -property_b: value
 value<br>
  -property_c: value

-etc.
value<br>
  -etc.<br>

Which SOME/IP Parameter do I have to configure?
I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List?
I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me.
Jannis

Wireshark 3.2 Some/IP Dissector Payload interpretation

Hello together,
I want to use the new integrated SOME/IP Dissector in Wireshark.
If I go to the Wireshark Settings for the SOME/IP Protocol I have plenty of possibilities to dissect my payload.
Setting up my UDP Ports, SOME/IP Services and SOME/IP Methods is not a problem and already working.
But I am stuck with payload dissection. I don't know how to correctly configure the SOME/IP Parameter and it seems to me, that this payload dissection is more for Fibex4 xml files than arxml files that we use.

Easy Payload example:

Service ID: 0xaaaa
Service Name: example
Method ID and name:
0x0c10 test1
0x0c20 test2
00 00 00 22 00 00 00 1e 20 00 00 00 00 01 00 01 01 00 02 01 00 03 01 00 04 01 00 05 01 00 06 01 20 07 00 00 00 1f

Analysis:

00 00 00 22    => 34 Bytes vector
00 00 00 1e    => Length of first struct is 30 Bytes
20 00             => 1. element: Wire Type:2(32bit) and TLV-Data ID: 0
00 00 00 01    => Property_a(key-value): 1 Type is enum
00 01             => 2. element: Wire Type:0(8bit) and TLV-Data ID: 1
01                 =>Property_b: 1 Type is boolean
00 02             => 3. element: Wire Type:0(8bit) and TLV-Data ID: 2
01                  =>Property_c: 1 Type is boolean
00 03             => 4. element: Wire Type:0(8bit) and TLV-Data ID: 3
01                  =>Property_d: 1 Type is boolean
00 04             => 5. element: Wire Type:0(8bit) and TLV-Data ID: 4
01                 =>Property_e: 1 Type is boolean
00 05             => 6. element: Wire Type:0(8bit) and TLV-Data ID: 5
01                 =>Property_f: 1 Type is boolean
00 06             => 7. element: Wire Type:0(8bit) and TLV-Data ID: 6
01                  =>Property_g: 1 Type is boolean
20 07             => 8. element: Wire Type:2(32bit) and TLV-Data ID: 7
00 00 00 1f    =>Property_h: 31 Type is enum

(I don't have enough points to upload a picture)

What I want now, is to see in Wireshark->message-someip->payload a structure like this:

struct 1:<br>
1:
  -property_a: value<br>
value
  -property_b: value<br>
value
  -property_c: value<br>
  -etc.<br>
value
  -etc.

Which SOME/IP Parameter do I have to configure?
I tried it with structs, enums and list, but I always get error messages that the payload can't be dissected. For instance what is the field ID Reference meaning in SOME/IP Parameter List?
I searched for a documentation but was not able to find one, maybe this dissector is to new.

Thanks in advance for helping me.
Jannis

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2