2021-10-08 22:29:42 +00:00
|
|
|
|
Wireshark 3.7.0 Release Notes
|
2014-05-11 19:16:39 +00:00
|
|
|
|
|
2018-12-12 23:25:31 +00:00
|
|
|
|
This is an experimental release intended to test new features for
|
2020-10-25 09:14:23 +00:00
|
|
|
|
Wireshark 3.6.
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
2018-03-15 20:46:30 +00:00
|
|
|
|
What is Wireshark?
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
2018-12-12 23:25:31 +00:00
|
|
|
|
Wireshark is the world’s most popular network protocol analyzer. It is
|
|
|
|
|
used for troubleshooting, analysis, development and education.
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
2018-03-15 20:46:30 +00:00
|
|
|
|
What’s New
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
2021-11-21 16:24:28 +00:00
|
|
|
|
• The PCRE2 library (https://www.pcre.org/) is now a required
|
|
|
|
|
dependency to build Wireshark.
|
|
|
|
|
|
2019-06-23 08:20:25 +00:00
|
|
|
|
Many improvements have been made. See the “New and Updated Features”
|
|
|
|
|
section below for more details.
|
2018-03-15 20:46:30 +00:00
|
|
|
|
|
2018-12-12 23:25:31 +00:00
|
|
|
|
New and Updated Features
|
2018-03-15 20:46:30 +00:00
|
|
|
|
|
2019-07-28 08:20:20 +00:00
|
|
|
|
The following features are new (or have been significantly updated)
|
2021-11-21 16:24:28 +00:00
|
|
|
|
since version 3.6.0:
|
2021-10-08 22:29:42 +00:00
|
|
|
|
|
2021-10-17 09:30:23 +00:00
|
|
|
|
• Display filter syntax:
|
|
|
|
|
|
2021-10-31 16:39:46 +00:00
|
|
|
|
• Set elements must be separated using a comma, e.g: {1, 2,
|
|
|
|
|
"foo"}. Using only whitespace as separator was deprecated in 3.6
|
|
|
|
|
and is now a syntax error.
|
|
|
|
|
|
2021-11-07 16:40:28 +00:00
|
|
|
|
• Adds support for some additional character escape sequences in
|
|
|
|
|
double quoted strings. Besides octal and hex byte specification
|
|
|
|
|
the following C escape sequences are now supported with the same
|
|
|
|
|
meaning: \a, \b, \f, \n, \r, \t, \v. Previously they were only
|
2021-11-28 16:24:55 +00:00
|
|
|
|
supported with character constants.
|
|
|
|
|
|
|
|
|
|
• Unrecognized escape sequences are now treated as a syntax
|
|
|
|
|
error. Previously they were treated as a literal character. In
|
|
|
|
|
addition to the sequences indicated above, backslash, single
|
|
|
|
|
quotation and double quotation mark are also valid sequences: \\,
|
|
|
|
|
\', \".
|
2021-11-07 16:40:28 +00:00
|
|
|
|
|
2021-11-21 16:24:28 +00:00
|
|
|
|
• The display filter engine now uses PCRE2 instead of GRegex
|
|
|
|
|
(GLib bindings to the older end-of-life PCRE library). PCRE2 is
|
|
|
|
|
compatible with PCRE so the user-visible changes should be
|
|
|
|
|
minimal. Some exotic patterns may now be invalid and require
|
|
|
|
|
rewriting.
|
2021-10-31 16:39:46 +00:00
|
|
|
|
|
2021-11-28 16:24:55 +00:00
|
|
|
|
• HTTP2 dissector now supports using fake headers to parse the
|
|
|
|
|
DATAs of streams captured without first HEADERS frames of a
|
|
|
|
|
long-lived stream (like gRPC streaming call which allows sending
|
|
|
|
|
many request or response messages in one HTTP2 stream). User can
|
|
|
|
|
specify fake headers according to the server port, stream id and
|
|
|
|
|
direction of the long-lived stream that we start capturing
|
|
|
|
|
packets after it is established.
|
|
|
|
|
|
2021-08-27 17:17:38 +00:00
|
|
|
|
New File Format Decoding Support
|
|
|
|
|
|
2009-09-14 23:31:02 +00:00
|
|
|
|
New Protocol Support
|
|
|
|
|
|
2021-11-21 16:24:28 +00:00
|
|
|
|
Host IP Configuration Protocol (HICP) and Secure Host IP
|
|
|
|
|
Configuration Protocol (SHICP)
|
2020-12-13 09:14:28 +00:00
|
|
|
|
|
2009-09-14 23:31:02 +00:00
|
|
|
|
Updated Protocol Support
|
|
|
|
|
|
2018-02-06 20:35:21 +00:00
|
|
|
|
Too many protocols have been updated to list here.
|
2013-03-28 17:48:31 +00:00
|
|
|
|
|
2009-09-14 23:31:02 +00:00
|
|
|
|
New and Updated Capture File Support
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
2018-03-15 20:46:30 +00:00
|
|
|
|
Getting Wireshark
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
2018-12-12 23:25:31 +00:00
|
|
|
|
Wireshark source code and installation packages are available from
|
2019-12-15 08:20:34 +00:00
|
|
|
|
https://www.wireshark.org/download.html.
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
|
|
|
|
Vendor-supplied Packages
|
|
|
|
|
|
2018-12-12 23:25:31 +00:00
|
|
|
|
Most Linux and Unix vendors supply their own Wireshark packages. You
|
|
|
|
|
can usually install or upgrade Wireshark using the package management
|
|
|
|
|
system specific to that platform. A list of third-party packages can
|
2021-11-21 16:24:28 +00:00
|
|
|
|
be found on the download page[1] on the Wireshark web site.
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
2018-03-15 20:46:30 +00:00
|
|
|
|
File Locations
|
2005-12-28 16:19:31 +00:00
|
|
|
|
|
2018-03-15 20:46:30 +00:00
|
|
|
|
Wireshark and TShark look in several different locations for
|
2018-12-12 23:25:31 +00:00
|
|
|
|
preference files, plugins, SNMP MIBS, and RADIUS dictionaries. These
|
2021-10-08 22:29:42 +00:00
|
|
|
|
locations vary from platform to platform. You can use "Help › About
|
|
|
|
|
Wireshark › Folders" or `tshark -G folders` to find the default
|
|
|
|
|
locations on your system.
|
2009-09-14 23:31:02 +00:00
|
|
|
|
|
2018-12-12 23:25:31 +00:00
|
|
|
|
Getting Help
|
2013-11-01 09:55:26 +00:00
|
|
|
|
|
2018-12-12 23:25:31 +00:00
|
|
|
|
The User’s Guide, manual pages and various other documentation can be
|
2019-12-15 08:20:34 +00:00
|
|
|
|
found at https://www.wireshark.org/docs/
|
2005-10-14 21:39:33 +00:00
|
|
|
|
|
2021-11-21 16:24:28 +00:00
|
|
|
|
Community support is available on Wireshark’s Q&A site[2] and on the
|
2018-12-12 23:25:31 +00:00
|
|
|
|
wireshark-users mailing list. Subscription information and archives
|
2021-11-21 16:24:28 +00:00
|
|
|
|
for all of Wireshark’s mailing lists can be found on the web site[3].
|
2005-10-14 21:39:33 +00:00
|
|
|
|
|
2021-11-21 16:24:28 +00:00
|
|
|
|
Bugs and feature requests can be reported on the issue tracker[4].
|
2005-10-14 21:39:33 +00:00
|
|
|
|
|
2018-03-15 20:46:30 +00:00
|
|
|
|
Frequently Asked Questions
|
2005-10-14 21:39:33 +00:00
|
|
|
|
|
2021-11-21 16:24:28 +00:00
|
|
|
|
A complete FAQ is available on the Wireshark web site[5].
|
2013-03-28 17:48:31 +00:00
|
|
|
|
|
2021-11-28 16:24:55 +00:00
|
|
|
|
Last updated 2021-11-28 16:07:10 UTC
|
2013-03-28 17:48:31 +00:00
|
|
|
|
|
2018-03-15 20:46:30 +00:00
|
|
|
|
References
|
2013-03-28 17:48:31 +00:00
|
|
|
|
|
2021-11-21 16:24:28 +00:00
|
|
|
|
1. https://www.wireshark.org/download.html
|
|
|
|
|
2. https://ask.wireshark.org/
|
|
|
|
|
3. https://www.wireshark.org/lists/
|
|
|
|
|
4. https://gitlab.com/wireshark/wireshark/-/issues
|
|
|
|
|
5. https://www.wireshark.org/faq.html
|