vsomeip icon indicating copy to clipboard operation
vsomeip copied to clipboard

Published 20 hours ago verified publisher icon COVESA

How to parse the someip packages by wireshark(version3.6,now UDP only)

Open ziyangfu opened this issue 3 years ago • 4 comments

Hi wireshark offered the filter of someip and someipsd,but I can not find someip protocol packages like following image。just UDP only now。 9

ziyangfu avatar Dec 28 '21 06:12 ziyangfu

In Settings → Protocols → SOME/IP and SOME/IP-SD you have to enter your configured ports to make it work properly

doschropa avatar Feb 10 '22 10:02 doschropa

There doesn't seem to be much (any) docs about this. I've managed to get it working though, decoding function parameters and the likes.

Having packet-someip.c open while your decoding helps get the IDs it's needs for types. For base types (primitives) you need SOMEIP_PAYLOAD_PARAMETER_DATA_TYPE_BASE_TYPE, and for the "ID Reference" you reference the type def in the "Base Type List"

kheaactua avatar Feb 11 '22 14:02 kheaactua

You can use this dissector: https://gitlab.com/automotive-projects/eth-ws-someip

I remember that you'd have to modify few things as there is already someip in Wireshark, but after that it works very well.

splywaczyk avatar Feb 14 '22 13:02 splywaczyk

In Settings → Protocols → SOME/IP and SOME/IP-SD you have to enter your configured ports to make it work properly

yes,that's right. Wireshark identifies application layer protocols by port number, but SOME/IP do not exist default port like http.

ziyangfu avatar Feb 15 '22 02:02 ziyangfu

Closing ticket: Ticket already answered.

goncaloalmeida avatar Feb 17 '23 14:02 goncaloalmeida