Wireshark 歷史版本列表 Page7

更新時間：2021-11-23
更新細節：

What's new in this version:

New and Updated Features:
The following features are new (or have been significantly updated) since version 3.6.0rc3:
- The macOS Intel packages now ship with Qt 5.15.3 and require macOS 10.13 or later

The following features are new (or have been significantly updated) since version 3.6.0rc2:
- Display filter set elements must now be comma-separated. See below for more details.

The following features are new (or have been significantly updated) since version 3.6.0rc1:
- The display filter expression “a != b” now has the same meaning as “!(a == b)”

The following features are new (or have been significantly updated) since version 3.5.0:
- Nothing of note.

The following features are new (or have been significantly updated) since version 3.4.0:
Several changes have been made to the display filter syntax:
- The expression “a != b” now always has the same meaning as “!(a == b)”. In particular this means filter expressions with multi-value fields like “ip.addr != 1.1.1.1” will work as expected (the result is the same as typing “ip.src != 1.1.1.1 and ip.dst != 1.1.1.1”). This avoids the contradiction (a == b and a != b) being true.
- It is possible to use the syntax “a ~= b” or “a any_ne b” to recover the previous (inconsistent with "==") logic for not equal.
- Literal strings can now be specified using raw string syntax, identical to raw strings in the Python programming language. This can be used to avoid the complexity of using two levels of character escapes with regular expressions.
- Set elements must now be separated using a comma. A filter such as http.request.method in {"GET" "HEAD"} must be written as …​ in {"GET", "HEAD"}. Whitespace is not significant. The previous use of whitespace as separator is deprecated and will be removed in a future version.
- Support for the syntax "a not in b" with the same meaning as "not a in b" has been added

Packaging updates:
- A macOS Arm 64 (Apple Silicon) package is now available
- The macOS Intel packages now ship with Qt 5.15.3 and require macOS 10.13 or later
- The Windows installers now ship with Npcap 1.55
- A 64-bit Windows PortableApps package is now available

- TCP conversations now support a completeness criteria, which facilitates the identification of TCP streams having any of opening or closing handshakes, a payload, in any combination. It can be accessed with the new tcp.completeness filter.
- Protobuf fields that are not serialized on the wire or otherwise missing in capture files can now be displayed with default values by setting the new “add_default_value” preference. The default values might be explicitly declared in “proto2” files, or false for bools, first value for enums, zero for numeric types.
- Wireshark now supports reading Event Tracing for Windows (ETW). A new extcap named ETW reader is created that now can open an etl file, convert all events in the file to DLT_ETW packets and write to a specified FIFO destination. Also, a new packet_etw dissector is created to dissect DLT_ETW packets so Wireshark can display the DLT_ETW packet header, its message and packet_etw dissector calls packet_mbim sub_dissector if its provider matches the MBIM provider GUID.
- “Follow DCCP stream” feature to filter for and extract the contents of DCCP streams.
- Wireshark now supports dissecting RTP packets with OPUS payloads.
- Importing captures from text files based on regular expressions is now possible. By specifying a regex capturing a single packet including capturing groups for relevant fields a textfile can be converted to a libpcap capture file. Supported data encodings are plain-hexadecimal, -octal, -binary and base64. Also the timestamp format now allows the second-fractions to be placed anywhere in the timestamp and it will be stored with nanosecond instead of microsecond precision.

The RTP Player has been significatnly redesigned and improved. See Playing VoIP Calls and RTP Player Window in the User’s Guide for more details:
- The RTP Player can play many streams in row
- The UI is more responsive
- The RTP Player maintains playlist and other tools can add and remove streams to and from it
- Every stream can be muted or routed to the left or right channel for replay
- The option to save audio has been moved from the RTP Analysis dialog to the RTP Player. The RTP Player also saves what was played, and it can save in multichannel .au or .wav.
- The RTP Player is now accessible from the Telephony › RTP › RTP Player menu

The VoIP dialogs (VoIP Calls, RTP Streams, RTP Analysis, RTP Player, SIP Flows) are non-modal and can stay opened on background:
- The same tools are provided across all dialogs (Prepare Filter, Analyse, RTP Player …​)

The “Follow Stream” dialog is now able to follow SIP calls based on their Call-ID value:
- The “Follow Stream” dialog’s YAML output format has been updated to add timestamps and peers information For more details see Following Protocol Streams in the User’s Guide
- IP fragments between public IPv4 addresses are now reassembled even if they have different VLAN IDs. Reassembly of IP fragments where one endpoint is a private (RFC 1918 section 3) or link-local (RFC 3927) IPv4 address continues to take the VLAN ID into account, as those addresses can be reused. To revert to the previous behavior and not reassemble fragments with different VLAN IDs, turn on the “Enable stricter conversation tracking heuristics” top level protocol preference.
- USB Link Layer reassembly has been added, which allows hardware captures to be analyzed at the same level as software captures
- TShark can now export TLS session keys with the --export-tls-session-keys option
- Wireshark participated in the Google Season of Docs 2020 and the User’s Guide has been extensively updated
- The “RTP Stream Analysis” dialog CSV export format was slightly changed. The first line of the export contains column titles as in other CSV exports.
- Wireshark now supports the Turkish language
- The settings in the “Import from Hex Dump” dialog is now stored in a profile import_hexdump.json file
- Analyze › Reload Lua Plugins has been improved to properly support FileHandler
- The “RTP Stream Analysis” and “IAX2 Stream Analysis” dialogs now show correct calculation mean jitter calculations
- RTP streams are now created based on Skinny protocol messages in addition to other types of messages
- The “VoIP Calls Flow Sequence” window shows more information about various Skinny messages
- Initial support for building Wireshark on Windows using GCC and MinGW-w64 has been added. See README.msys2 in the sources for more information.

更新時間：2021-11-22
更新細節：

What's new in this version:

- Fixed an issue where the app fails to load on slower networks

更新時間：2021-11-22
更新細節：

What's new in this version:

Fixed:
- [VarExporter] fix exporting declared but unset properties when __sleep() is implemented
- [Console] Default ansi option to null
- [HttpClient][Mime] Add correct IDN flags for IDNA2008 compliance
- [Yaml] properly parse quoted strings tagged with !!str
- [TwigBridge] do not merge label classes into expanded choice labels
- [FrameworkBundle] Fix default PHP attributes support in validation and serializer configuration when doctrine/annotations is not installed with PHP 8
- [Serializer] fix support for lazy properties
- [FrameworkBundle][Messenger] remove FlattenExceptionNormalizer definition if serializer not available
- [Serializer] fix support for unset properties on PHP < 7.4
- [Process] intersect with getenv() to populate default envs
- [Translation] [Loco] Generate id parameter instead of letting Loco do it
- [Cache] fix dbindex Redis
- [Notifier] Fix package names
- Fix DateIntervalToStringTransformer::transform() doc
- [Yaml] don't try to replace references in quoted strings
- [ErrorHandler] Fix FlattenException::setPrevious argument typing
- [DependencyInjection] fix inlining when non-shared services are involved
- [Cache] Fix Memory leak
- [FrameworkBundle] fix registering late resettable services
- [DoctrineBridge] add support for the JSON type
- [PhpUnitBridge] Fix Uncaught ValueError
- [HttpClient] Curl http client has to reinit curl multi handle on reset
- [Asset][Security] Fixed leftover deprecations PHP 8.1
- [Runtime] fix defining APP_DEBUG when Dotenv is not enabled
- [DependencyInjection] only allow ReflectionNamedType for ServiceSubscriberTrait
- [Intl] Update the ICU data to 70.1 - 5.3
- [Messenger] Fix tests
- [SecurityBundle] Default access_decision_manager.strategy option with merge
- [VarExporter] escape unicode chars involved in directionality
- [Security] Fix TypeError message in ChainUserProvider
- [Console] Runtime conflict for psr/log >= 3.0 instead of composer conflict
- [VarDumper] Make dumping DateInterval instances timezone-independent
- [Messenger] Use TransportMessageIdStamp in InMemoryTransport allows retrying
- [RateLimiter] Fix wait duration for fixed window policy
- [HttpKernel] fix ErrorException in CacheWarmerAggregate
- [Translation] correctly handle intl domains with TargetOperation
- [Runtime] Consider also $_ENV when resolving APP_RUNTIME and APP_RUNTIME_OPTIONS
- [Inflector] Fix inflector for "zombies"
- [Config] Fix signature generation with nested attributes on PHP 8.1

更新時間：2021-11-18
更新細節：

更新時間：2021-11-18
更新細節：

What's new in this version:

Fixed:
- wnpa-sec-2021-07 Bluetooth DHT dissector crash
- wnpa-sec-2021-08 Bluetooth HCI_ISO dissector crash
- wnpa-sec-2021-09 Bluetooth SDP dissector crash
- wnpa-sec-2021-10 Bluetooth DHT dissector large loop
- wnpa-sec-2021-11 PNRP dissector large loop
- wnpa-sec-2021-12 C12.22 dissector crash
- wnpa-sec-2021-13 IEEE 802.11 dissector crash
- wnpa-sec-2021-14 Modbus dissector crash
- wnpa-sec-2021-15 IPPUSB dissector crash
- The following bugs have been fixed:
- OSS-Fuzz: Heap-use-after-free in ROS
- Allow for '' (NULL) character as filter instead of requiring 0x00 for the character match
- Dumpcap with threads reports double received count vs captured
- I/O Graphs values reset to default with 3.5 due to change of UAT
- HTTP2 dissector reports an assertion error on large data frames
- TShark stops capturing when capturing with multiple files and packet printing enabled
- Wireshark is unable to decode the IMSI IE received in BSSMAP Perform Location request
- WSLUA: Crash on reload if Proto has no fields
- Crash in flow analysis for TCP

更新時間：2021-11-17
更新細節：

更新時間：2021-10-29
更新細節：

What's new in this version:

Fixed:
- [Dotenv] Duplicate $_SERVER values in $_ENV if they don't exist
- [PhpUnitBridge] fix symlink to bridge in docker by making its path relative
- [TwigBundle] fix auto-enabling assets/expression/routing/yaml/workflow extensions
- [String] Fix inflector for "zombies"
- [Messenger] Fix TraceableMessageBus implementation so it can compute caller even when used within a callback
- [Lock] Fix incorrect return type in PostgreSqlStore
- [Framework][Secrets] Fix service definition when local vault is disabled
- [DependencyInjection] Fix autowiring tagged arguments from attributes
- [VarDumper] Fix dumping twig templates found in exceptions
- [Messenger] Fix Redis Transport when username is empty
- Fix logging of impersonator introduced in 5.3
- [Messenger] Fix unwrapping the Postgres connection in DBAL 3
- [Messenger] fix: TypeError in PhpSerializer::encode()
- [Config] Fix files sorting in GlobResource
- [HttpClient] fix collecting debug info on destruction of CurlResponse
- [DependencyInjection] fix "url" env var processor
- [HttpClient] fix RetryableHttpClient when a response is canceled
- [Uid] fix 4 missing bits of entropy in UUIDv4
- [Runtime] Fix class validation of composer "extra.runtime.class"
- [VarDumper] Fix error with uninitialized XMLReader
- [Notifier] [RocketChat] Fix undefined index for message id
- [Notifier] Fix 'Undefined array key' error in FirebaseTransport
- [Validator] Fixes URL validation for single-char subdomains
- [Form] Fix ChoiceType to effectively set and use translator
- [Translation] Use symfony default locale when pulling translations from providers
- [HttpClient] fix missing kernel.reset tag on TraceableHttpClient services
- [Cache] Commit items implicitly only when deferred keys are requested
- [Cache][Lock] fix SQLSRV throws for method_exists()
- [VarDumper] Fix handling of "new" in initializers on PHP 8.1
- [Translation] [Bridge] [Lokalise] do not export empty strings
- [DependencyInjection] fix support for "new" in initializers on PHP 8.1
- [HttpClient] accept headers when CURLE_RECV_ERROR is received before the content
- [Serializer] Attributes that extend serializer`s annotations are not ignored by the serialization process
- [PhpUnitBridge] Do not override correct triggering file for return type deprecations
- [Serializer] Fix denormalizing XML array with empty body (5.x)
- [Serializer] Fix denormalizing XML array with empty body (4.4)
- [Security] Remove annoying deprecation in UsageTrackingTokenStorage

更新時間：2021-10-28
更新細節：

更新時間：2021-10-20
更新細節：

What's new in this version:

Fixed:
- a bug where PEP 585 parameterized built-in classes were not recognized when using from __future__ import annotations
- a bug in Jupyter notebooks where the connection to the Python debugger failed when using ipykernel>=6.3.0
- a bug where custom external documentation URLs for the standard entries were getting removed upon IDE restart
- a bug where PyCharm was updating indexes on every startup if IDE was closed with OS shutdown

更新時間：2021-10-13
更新細節：

What's new in this version:

Dark theme for TestComplete:
- TestComplete 15 includes one of its most requested features — the dark theme for the user interface

Web testing improvements:
- Seamless installation of the SmartBear Test extension in Edge. Similarly to installing the SmartBear Test Extension for Chrome, installing the extension for Edge Chromium is also seamless now. You no longer need to exit Edge during TestComplete (or TestExecute) installation to install or update the extension for this browser and you no longer need to enable the extension in this browser manually.
- Using optical character recognition in web tests running in parallel. Web tests that use optical character recognition (OCR) to identify objects can now run in remote environments in parallel.

Support for the latest versions of web browsers:
- Chrome 94
- Edge Chromium 94
- Firefox 93

Mobile testing improvements:
- You can switch between testing sessions opened on mobile devices in the BitBar device cloud easier. The Mobile Screen window now shows not only the list of recently used and connected devices, but also the applications for which a testing session was opened on these devices

Other improvements:
- By default, the TestComplete installation package no longer includes the help file. TestComplete uses the online version of the documentation instead — whenever you press F1 in some panel or click “Help” in a dialog box, TestComplete opens pages of its online documentation on our website. The new approach will help you always get up-to-date documentation relevant to your current product version.