1 Wireshark 1.99.0 Release Notes
3 This is an experimental release intended to test new features for the
5 __________________________________________________________________
9 Wireshark is the world's most popular network protocol analyzer. It is
10 used for troubleshooting, analysis, development and education.
11 __________________________________________________________________
17 The following bugs have been fixed:
18 * "On-the-wire" packet lengths are limited to 65535 bytes. ([1]Bug
19 8808, ws-buglink:9390)
20 * "Follow TCP Stream" shows only the first HTTP req+res. ([2]Bug
22 * Files with pcap-ng Simple Packet Blocks can't be read. ([3]Bug
24 * MPLS-over-PPP isn't recognized. ([4]Bug 9492)
26 New and Updated Features
28 The following features are new (or have been significantly updated)
30 * The I/O Graph in the Gtk+ UI now supports an unlimited number of
31 data points (up from 100k).
32 * tshark now resets its state when changing files in ring-buffer
34 * Expert Info severities can now be configured.
36 + A Polish translation has been added.
37 + The Interfaces dialog has been added.
38 + The interface list is now updated when interfaces appear or
40 + The Conversations dialog has been added.
41 + A Japanese translation has been added.
43 The following features are new (or have been significantly updated)
45 * Transport name resolution is now disabled by default.
46 * Support has been added for all versions of the DCBx protocol.
47 * Cleanup of LLDP code, all dissected fields are now navigable.
49 The following features are new (or have been significantly updated)
52 + The About dialog has been added
53 + The Capture Interfaces dialog has been added.
54 + The Decode As dialog has been added. It managed to swallow up
55 the User Specified Decodes dialog as well.
56 + The Export PDU dialog has been added.
57 + Several SCTP dialogs have been added.
58 + The statistics tree (the backend for many Statistics and
59 Telephony menu items) dialog has been added.
60 + The I/O Graph dialog has been added.
61 + French translation has updated.
63 The following features are new (or have been significantly updated)
65 * Mac OS X packaging has been improved.
67 The following features are new (or have been significantly updated)
69 * Dissector output may be encoded as UTF-8. This includes TShark
72 + The Follow Stream dialog now supports packet and TCP stream
74 + A Flow Graph (sequence diagram) dialog has been added.
75 + The main window now respects geometry preferences.
77 The following features are new (or have been significantly updated)
79 * Wireshark now uses the Qt application framework. The new UI should
80 provide a significantly better user experience, particularly on Mac
82 * The Windows installer now uninstalls the previous version of
83 Wireshark silently. You can still run the uninstaller manually
84 beforehand if you wish to run it interactively.
85 * Expert information is now filterable when the new API is in use.
86 * The "Number" column shows related packets and protocol conversation
88 * When manipulating packets with editcap using the -C <choplen>
89 and/or -s <snaplen> options, it is now possible to also adjust the
90 original frame length using the -L option.
91 * You can now pass the -C <choplen> option to editcap multiple times,
92 which allows you to chop bytes from the beginning of a packet as
93 well as at the end of a packet in a single step.
94 * You can now specify an optional offset to the -C option for
95 editcap, which allows you to start chopping from that offset
96 instead of from the absolute packet beginning or end.
97 * "malformed" display filter has been renamed to "_ws.malformed". A
98 handful of other filters have been given the "_ws." prefix to note
99 they are Wireshark application specific filters and not dissector
101 * The Kerberos dissector has been replaced with an auto generated one
102 from ASN1 protocol description, changing a lot of filter names.
106 corosync/totemnet, corosync/totemsrp, Generic Network Virtualization
107 Encapsulation (Geneve), IPMI Trace, iSER, and OptoMMP
109 Updated Protocol Support
111 Too many protocols have been updated to list here.
113 New and Updated Capture File Support
117 The libwireshark API has undergone some major changes:
118 * Many of the ep_ and se_ memory allocation routines have been
120 * The (long-since-broken) Python bindings support has been removed
121 from Wireshark. If you want to write dissectors in something other
123 __________________________________________________________________
127 Wireshark source code and installation packages are available from
128 [5]http://www.wireshark.org/download.html.
130 Vendor-supplied Packages
132 Most Linux and Unix vendors supply their own Wireshark packages. You
133 can usually install or upgrade Wireshark using the package management
134 system specific to that platform. A list of third-party packages can be
135 found on the [6]download page on the Wireshark web site.
136 __________________________________________________________________
140 Wireshark and TShark look in several different locations for preference
141 files, plugins, SNMP MIBS, and RADIUS dictionaries. These locations
142 vary from platform to platform. You can use About->Folders to find the
143 default locations on your system.
144 __________________________________________________________________
148 Dumpcap might not quit if Wireshark or TShark crashes. ([7]Bug 1419)
150 The BER dissector might infinitely loop. ([8]Bug 1516)
152 Capture filters aren't applied when capturing from named pipes.
155 Filtering tshark captures with read filters (-R) no longer works.
158 The 64-bit Windows installer does not support Kerberos decryption.
159 ([10]Win64 development page)
161 Resolving ([11]Bug 9044) reopens ([12]Bug 3528) so that Wireshark no
162 longer automatically decodes gzip data when following a TCP stream.
164 Application crash when changing real-time option. ([13]Bug 4035)
166 Hex pane display issue after startup. ([14]Bug 4056)
168 Packet list rows are oversized. ([15]Bug 4357)
170 Summary pane selected frame highlighting not maintained. ([16]Bug 4445)
172 Wireshark and TShark will display incorrect delta times in some cases.
175 The 64-bit Mac OS X installer doesn't support Mac OS X 10.9 ([18]Bug
177 __________________________________________________________________
181 Community support is available on [19]Wireshark's Q&A site and on the
182 wireshark-users mailing list. Subscription information and archives for
183 all of Wireshark's mailing lists can be found on [20]the web site.
185 Official Wireshark training and certification are available from
186 [21]Wireshark University.
187 __________________________________________________________________
189 Frequently Asked Questions
191 A complete FAQ is available on the [22]Wireshark web site.
192 __________________________________________________________________
194 Last updated 2014-07-28 21:43:38 EDT
198 1. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=8808
199 2. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9044
200 3. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9200
201 4. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9492
202 5. http://www.wireshark.org/download.html
203 6. http://www.wireshark.org/download.html#thirdparty
204 7. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1419
205 8. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516
206 9. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2234
207 10. https://wiki.wireshark.org/Development/Win64
208 11. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9044
209 12. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3528
210 13. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4035
211 14. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4056
212 15. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4357
213 16. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4445
214 17. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4985
215 18. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9242
216 19. http://ask.wireshark.org/
217 20. http://www.wireshark.org/lists/
218 21. http://www.wiresharktraining.com/
219 22. http://www.wireshark.org/faq.html