how to separate out tshark as separate project?
how to separate out tshark as separate project from available github repo of wireshark ?
Which files we need & how to build it ?
Be the first one to answer this question!
Please start posting anonymously - your entry will be published after you log in or create a new account.
This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss.
Comments
Why would you want to do that? Building the project creates executables that makes it possible to deploy tshark only.
I want very reduce sized version of binary for tshark. Goal is it should parse only limited Protocols like enip/cip/profinet.
You are probably better off by editing the list of dissectors then.
Do you know how to configure things so that only tshark (& dumpcap) binary will get created ? (When I tried to execute tshark from different location then it doesn't executed & need dumpcap. That means we have to build tshark & dumpcap. right?)
To control your build feed the desired options to cmake, to configure the make files to build what you want. If you want to change the dissector content that is not directly supported. You'll have to go into the Cmake files themselves as commented before. You'll need tshark to dissect packets (on the CLI), you'll need dumpcap if you want to capture packets.