This is a GSoC 2013 project accepted by QEMU.org. You can see also my proposal.
Provide Wireshark dissector for Libvirt RPC protocol. It will provide Libvirt packet overview/detail analysing in Wireshark. Furthermore, it could be build from RPC protocol definition placed in Libvirt source tree to support latest protocol specification.
Wireshark does not support dissect Libvirt RPC protocol. This feature will provide dissector of Wireshark that let you to see inside of Libvirt RPC packet. Actually, some implementation of dissector already exists here. But It doesn't support dissecting packet payload, and it is outdated.
The aim of this project is, provide Libvirt Wireshark dissector that supports not only dissect packet headers, but also packet payloads.
Another aim of this project is, provide dissector code generator that referes Libvirt RPC protocol definition placed in libvirt distribution. Definition files are having extension '.x' which means SunRPC protocol definition file. Currently, definitions which will support by the dissector are:
Distribution form of this product is as Wireshark's plugin. Compiling this dissector will provide libvirt.so, which is shared object that can plugged into Wireshark at runtime.
You need to copy libvirt.so to your Wireshark's plugins directory.(i.e, ~/.wireshark/plugins, /usr/lib/wireshark/plugins/<version>)
This project is currently in development. There is no producible revision yet.