Wireshark-bugs: [Wireshark-bugs] [Bug 8649] New: Kerberos as pure ASN.1 dissector

Date: Mon, 13 May 2013 00:23:27 +0000
Bug ID 8649
Summary Kerberos as pure ASN.1 dissector
Classification Unclassified
Product Wireshark
Version SVN
Hardware All
OS All
Status UNCONFIRMED
Severity Enhancement
Priority Low
Component Dissection engine (libwireshark)
Assignee [email protected]
Reporter [email protected]

Created attachment 10751 [details]
Updated Kerberos ASN.1 dissector

Build Information:
Version 1.11.0 (SVN Rev 49262 from /trunk)

Copyright 1998-2013 Gerald Combs <[email protected]> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (32-bit) with GTK+ 2.24.14, with Cairo 1.10.2, with Pango 1.30.1, with
GLib 2.34.1, with WinPcap (4_1_3), with libz 1.2.5, without POSIX capabilities,
without libnl, with SMI 0.4.8, with c-ares 1.9.1, with Lua 5.1, without Python,
with GnuTLS 2.12.18, with Gcrypt 1.4.6, with MIT Kerberos, with GeoIP, with
PortAudio V19-devel (built May 12 2013), with AirPcap.

Running on Windows XP Service Pack 3, build 2600, with WinPcap version 4.1.2
(packet.dll version 4.1.0.2001), based on libpcap version 1.0 branch 1_0_rel0b
(20091008), GnuTLS 2.12.18, Gcrypt 1.4.6, without AirPcap.
Intel(R) Core(TM) i7 CPU       Q 720  @ 1.60GHz, with 2047MB of physical
memory.


Built using Microsoft Visual C++ 10.0 build 40219
--
I updated the Kerberos ASN.1 dissector to the point I believe it can replace
the "hand made" one.  I've never worked with ASN.1 before, so I thought I'd
have those more experienced take a look.

Some notes:
1. Display filters appear "more distinctive" on hand-made version.  Field
labels may vary by type sensitivity.  How important is this for "backwards
compatibility"?

3. Should the .asn files be cleaned up with all of the "commented out"
functionality (left for historical reasons?).  Should we have just a single
.asn?

4. check*.pl tools note a few issues, not sure if they are preventable.

5. Bonus points to someone who can simplify the dissect_krb5_decrypt_*
functions into a single function (with an array of "usage types" to try?)

Tempted to check in the ASN.1 code regardless, but not the generated
packet-kerberos.[ch].


You are receiving this mail because:
  • You are watching all bug changes.