forked from osmocom/wireshark
138 lines
5.1 KiB
Plaintext
138 lines
5.1 KiB
Plaintext
Wireshark 3.1.1 Release Notes
|
||
|
||
This is an experimental release intended to test new features for
|
||
Wireshark 3.2.
|
||
|
||
What is Wireshark?
|
||
|
||
Wireshark is the world’s most popular network protocol analyzer. It is
|
||
used for troubleshooting, analysis, development and education.
|
||
|
||
What’s New
|
||
|
||
Many improvements have been made. See the “New and Updated Features”
|
||
section below for more details.
|
||
|
||
New and Updated Features
|
||
|
||
The following features are new (or have been significantly updated)
|
||
since version 3.1.0:
|
||
|
||
• You can once again mark and unmark packets using the middle mouse
|
||
button. This feature went missing around 2009 or so.
|
||
|
||
The following features are new (or have been significantly updated)
|
||
since version 3.0.0:
|
||
|
||
• Drag&Drop a field to a column header to create a column for that
|
||
field, or to the display filter input to create a display filter.
|
||
If a display filter is applied, the new filter can be added using
|
||
the same rules as "Apply Filter"
|
||
|
||
• Drag&Drop a column entry to the display filter to create a filter
|
||
for it
|
||
|
||
• Import profiles from a .zip archive or an existing directory
|
||
|
||
• Dark mode support on macOS and dark theme support on other
|
||
platforms has been improved.
|
||
|
||
• Brotli decompression support in HTTP/HTTP2 (requires the brotli
|
||
library).
|
||
|
||
• The build system now checks for a SpeexDSP system library
|
||
installation. The bundled Speex resampler code is still provided
|
||
as a fallback.
|
||
|
||
• WireGuard decryption can now be enabled through keys embedded in
|
||
a pcapng in addition to the existing key log preference (Bug
|
||
15571[1]).
|
||
|
||
• A new tap for extracting credentials from the capture file has
|
||
been added. It can be accessed through the "-z credentials"
|
||
option in tshark or from the "tools" menu in Wireshark.
|
||
|
||
• Editcap can now split files on floating point intervals.
|
||
|
||
• Windows .msi packages are now signed using SHA-2[2]. .exe
|
||
installers are still dual-signed using SHA-1 and SHA-2.
|
||
|
||
New Protocol Support
|
||
|
||
3GPP BICC MST (BICC-MST), 3GPP log packet (LOG3GPP), 3GPP/GSM Cell
|
||
Broadcast Service Protocol (cbsp), Bluetooth Mesh Beacon, Bluetooth
|
||
Mesh PB-ADV, Bluetooth Mesh Provisioning PDU, Bluetooth Mesh Proxy,
|
||
CableLabs Layer-3 Protocol IEEE EtherType 0xb4e3 (CL3), DCOM
|
||
IProvideClassInfo, DCOM ITypeInfo, Distributed Replicated Block
|
||
Device (DRBD), Dual Channel Wi-Fi (CL3DCW), EBHSCR Protocol (EBHSCR),
|
||
EERO Protocol (EERO), evolved Common Public Radio Interface (eCPRI),
|
||
File Server Remote VSS Protocol (FSRVP), FTDI FT USB Bridging Devices
|
||
(FTDI FT), Graylog Extended Log Format over UDP (GELF), GSM/3GPP CBSP
|
||
(Cell Broadcast Service Protocol), MIDI System Exclusive DigiTech
|
||
(SYSEX DigiTech), Network Controller Sideband Interface (NCSI), NR
|
||
Positioning Protocol A (NRPPa) TS 38.455, NVM Express over Fabrics
|
||
for TCP (nvme-tcp), and OsmoTRX Protocol (GSM Transceiver control and
|
||
data)
|
||
|
||
Updated Protocol Support
|
||
|
||
Too many protocols have been updated to list here.
|
||
|
||
New and Updated Capture File Support
|
||
|
||
3gpp phone, Android Logcat Text, Ascend, Candump, Endace ERF,
|
||
NetScaler, pcapng, and Savvius *Peek
|
||
|
||
Getting Wireshark
|
||
|
||
Wireshark source code and installation packages are available from
|
||
https://www.wireshark.org/download.html[3].
|
||
|
||
Vendor-supplied Packages
|
||
|
||
Most Linux and Unix vendors supply their own Wireshark packages. You
|
||
can usually install or upgrade Wireshark using the package management
|
||
system specific to that platform. A list of third-party packages can
|
||
be found on the download page[4] on the Wireshark web site.
|
||
|
||
File Locations
|
||
|
||
Wireshark and TShark look in several different locations for
|
||
preference files, plugins, SNMP MIBS, and RADIUS dictionaries. These
|
||
locations vary from platform to platform. You can use About→Folders to
|
||
find the default locations on your system.
|
||
|
||
Getting Help
|
||
|
||
The User’s Guide, manual pages and various other documentation can be
|
||
found at https://www.wireshark.org/docs/[5]
|
||
|
||
Community support is available on Wireshark’s Q&A site[6] and on the
|
||
wireshark-users mailing list. Subscription information and archives
|
||
for all of Wireshark’s mailing lists can be found on the web site[7].
|
||
|
||
Bugs and feature requests can be reported on the bug tracker[8].
|
||
|
||
Official Wireshark training and certification are available from
|
||
Wireshark University[9].
|
||
|
||
Frequently Asked Questions
|
||
|
||
A complete FAQ is available on the Wireshark web site[10].
|
||
|
||
Last updated 2019-08-25 09:05:22 UTC
|
||
|
||
References
|
||
|
||
1. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15571
|
||
2. https://support.microsoft.com/en-us/help/4472027/2019-sha-2-code-s
|
||
igning-support-requirement-for-windows-and-wsus
|
||
3. https://www.wireshark.org/download.html
|
||
4. https://www.wireshark.org/download.html#thirdparty
|
||
5. https://www.wireshark.org/docs/
|
||
6. https://ask.wireshark.org/
|
||
7. https://www.wireshark.org/lists/
|
||
8. https://bugs.wireshark.org/
|
||
9. https://www.wiresharktraining.com/
|
||
10. https://www.wireshark.org/faq.html
|